[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

[WEB SECURITY] Re: Ruby On Rails 1.1.5 Released to Address Critical Vulnerability

From: "Iván Alemán" <bonovoxmofo@xxxxxxxxx>
Subject: [WEB SECURITY] Re: Ruby On Rails 1.1.5 Released to Address Critical Vulnerability
Date: Thu, 10 Aug 2006 12:21:26 -0500

The issue is in fact of such a criticality that we're not going to dig into the specifics. No need to
arm would-be assalients."


This comment is á la M$ way, users of rails have the right to know
what's going on not to patch just because... what if the patch causes
an anomaly in their sites with out a clue of where to start looking
at?

--
Iván Alemán ~ [[ m o f o ]] ~
Debian (SID)

-----BEGIN GEEK CODE BLOCK-----
Version: 3.12
G!>GCM d+ s: a? C+++ UL++
P L+>+++$ E--- W++>+ N* o---
K- w O- M+ V-- PS++ PE-- Y PGP+>++
t-- 5 X R+ !tv b++ DI-- D+++ G+
e++ h* r+ z*>*$
------END GEEK CODE BLOCK------

bonovoxmofo.blogspot.com

----------------------------------------------------------------------------
The Web Security Mailing List:
http://www.webappsec.org/lists/websecurity/

The Web Security Mailing List Archives:
http://www.webappsec.org/lists/websecurity/archive/
http://www.webappsec.org/rss/websecurity.rss [RSS Feed]

References:
- [WEB SECURITY] Ruby On Rails 1.1.5 Released to Address Critical Vulnerability
  - From: bugtraq

Prev by Date: [WEB SECURITY] RE: Ruby On Rails 1.1.5 Released to Address Critical Vulnerability
Next by Date: Re: [WEB SECURITY] RE: Ruby On Rails 1.1.5 Released to Address Critical Vulnerability
Previous by thread: Re: [WEB SECURITY] RE: Ruby On Rails 1.1.5 Released to Address Critical Vulnerability
Next by thread: [WEB SECURITY] Sending multipart/form-data requests from Flash (with arbitrary headers)
Index(es):
- Date
- Thread

Brought to you by http://www.webappsec.org
Search this site