Main Vulnerability Database Vulnerabilities #VU658

Insecure installation in bundler - CVE-2013-0334

Published: September 26, 2016

Vulnerability identifier: #VU658

CSH Severity: Medium

CVSS v4.0: CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:A/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/U:Green

CVE-ID: CVE-2013-0334

CWE-ID: CWE-345

Exploitation vector: Remote access

Exploit availability: No public exploit available

Vendor: Bundler

Affected software:
bundler

Detailed vulnerability description

The vulnerability allows a remote attacker to compromise vulnerable system.

The vulnerability exists due to logic error within Bundler installation process, when handling gemfiles with multiple top-level sources. The application dies not control the installation source and may allow installing gem file from a different server from the list, if the server in question contains the gem file with the same name.

The attack could be launched using malicious gem file on a public repository, such as gems.github.com. A remote attacker can create a malicious gem file, which will be fetched and executed during installation.

Successful exploitation of the vulnerability may result in compromise of vulnerable system.

How to mitigate CVE-2013-0334

Update to Bundler 1.7.

Sources

http://bundler.io/blog/2014/08/14/bundler-may-install-gems-from-a-different-source-than-expected-cve...

Insecure installation in bundler - CVE-2013-0334

Detailed vulnerability description

How to mitigate CVE-2013-0334

Sources

Please verify you're human