Short Name |
HTTP:CTS:RUBY-RAILS-RCE |
---|---|
Severity |
Minor |
Recommended |
No |
Category |
HTTP |
Keywords |
Ruby on Rails Web Console CVE-2015-3224 Remote Code Execution |
Release Date |
2020/04/07 |
Update Number |
3269 |
Supported Platforms |
srx-12.1+, srx-branch-12.1+, vsrx-12.1+, vsrx3bsd-18.2+ |
This signature detects attempts to exploit a known vulnerability against Ruby on Rails. A successful attack can lead to arbitrary code execution.
request.rb in Web Console before 2.1.3, as used with Ruby on Rails 3.x and 4.x, does not properly restrict the use of X-Forwarded-For headers in determining a client's IP address, which allows remote attackers to bypass the whitelisted_ips protection mechanism via a crafted request.