Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2012-1241

Overview

Vulnerability Score 7.5 7.5
CVE Id CVE-2012-1241
Last Modified 17 Apr 2012 12:00:00
Published 16 Apr 2012 12:55:01
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact PARTIAL PARTIAL
Availability Impact PARTIAL PARTIAL
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2012-1241

Summary

GRScript18.dll before 1.2.2.0 in ActiveScriptRuby (ASR) before 1.8.7 does not properly restrict interaction with an Internet Explorer ActiveX environment, which allows remote attackers to execute arbitrary Ruby code via a crafted HTML document.

Vulnerable Systems

Application

  • Artonx.org Activescriptruby 1.0.8.8

  • Artonx.org Activescriptruby 1.6.0.1

  • Artonx.org Activescriptruby 1.6.0.2

  • Artonx.org Activescriptruby 1.6.0.3

  • Artonx.org Activescriptruby 1.6.0.5

  • Artonx.org Activescriptruby 1.6.2.0

  • Artonx.org Activescriptruby 1.6.2.1

  • Artonx.org Activescriptruby 1.6.2.10

  • Artonx.org Activescriptruby 1.6.2.2

  • Artonx.org Activescriptruby 1.6.2.3

  • Artonx.org Activescriptruby 1.6.2.4

  • Artonx.org Activescriptruby 1.6.2.5

  • Artonx.org Activescriptruby 1.6.2.6

  • Artonx.org Activescriptruby 1.6.2.7

  • Artonx.org Activescriptruby 1.6.2.8

  • Artonx.org Activescriptruby 1.6.2.9

  • Artonx.org Activescriptruby 1.6.3.0

  • Artonx.org Activescriptruby 1.6.3.1

  • Artonx.org Activescriptruby 1.6.3.2

  • Artonx.org Activescriptruby 1.6.3.3

  • Artonx.org Activescriptruby 1.6.3.4

  • Artonx.org Activescriptruby 1.6.3.5

  • Artonx.org Activescriptruby 1.6.4.0

  • Artonx.org Activescriptruby 1.6.4.1

  • Artonx.org Activescriptruby 1.6.4.2

  • Artonx.org Activescriptruby 1.6.4.3

  • Artonx.org Activescriptruby 1.6.4.4

  • Artonx.org Activescriptruby 1.6.4.6

  • Artonx.org Activescriptruby 1.6.4.7

  • Artonx.org Activescriptruby 1.6.4.8

  • Artonx.org Activescriptruby 1.6.5.0

  • Artonx.org Activescriptruby 1.6.5.1

  • Artonx.org Activescriptruby 1.6.5.2

  • Artonx.org Activescriptruby 1.6.5.3

  • Artonx.org Activescriptruby 1.6.5.4

  • Artonx.org Activescriptruby 1.6.5.5

  • Artonx.org Activescriptruby 1.6.5.6

  • Artonx.org Activescriptruby 1.6.5.7

  • Artonx.org Activescriptruby 1.6.6.0

  • Artonx.org Activescriptruby 1.6.6.1

  • Artonx.org Activescriptruby 1.6.7.0

  • Artonx.org Activescriptruby 1.6.7.1

  • Artonx.org Activescriptruby 1.6.7.2

  • Artonx.org Activescriptruby 1.6.7.3

  • Artonx.org Activescriptruby 1.6.7.4

  • Artonx.org Activescriptruby 1.6.7.5

  • Artonx.org Activescriptruby 1.6.7.6

  • Artonx.org Activescriptruby 1.6.8.0

  • Artonx.org Activescriptruby 1.6.8.1

  • Artonx.org Activescriptruby 1.6.8.3

  • Artonx.org Activescriptruby 1.8.0.0

  • Artonx.org Activescriptruby 1.8.0.5

  • Artonx.org Activescriptruby 1.8.1.0

  • Artonx.org Activescriptruby 1.8.1.1

  • Artonx.org Activescriptruby 1.8.1.2

  • Artonx.org Activescriptruby 1.8.2.0

  • Artonx.org Activescriptruby 1.8.4.0

  • Artonx.org Activescriptruby 1.8.5.0

  • Artonx.org Activescriptruby 1.8.5.2

  • Artonx.org Activescriptruby 1.8.7.34

  • Artonx.org Activescriptruby 1.8.7.35

  • Artonx.org Activescriptruby 1.8.7.36


References

JVNDB - JVNDB-2012-000031

JVN - JVN#33283707

MLIST - [ruby-list] 20100619 ANN: ActiveScriptRuby 1.8.7


Last Updated: 27 May 2016 10:58:24