Search

Find a vulnerability

Search criteria Use this form to refine search results.
Full-text search supports keyword queries with ranking and filtering.
You can combine vendor, product, and sources to narrow results.
Enable “Apply ordering” to sort by date instead of relevance.

    2 vulnerabilities found for activescriptruby by artonx.org

    CVE-2012-1241 (GCVE-0-2012-1241)

    Vulnerability from nvd – Published: 2012-04-16 16:00 – Updated: 2024-08-06 18:53
    VLAI
    Summary
    GRScript18.dll before 1.2.2.0 in ActiveScriptRuby (ASR) before 1.8.7 does not properly restrict interaction with an Internet Explorer ActiveX environment, which allows remote attackers to execute arbitrary Ruby code via a crafted HTML document.
    Severity
    No CVSS data available.
    CWE
    • n/a
    Assigner
    References
    URL Tags
    http://jvndb.jvn.jp/jvndb/JVNDB-2012-000031 third-party-advisoryx_refsource_JVNDB
    http://blade.nagaokaut.ac.jp/cgi-bin/scat.rb/ruby… mailing-listx_refsource_MLIST
    http://www.securityfocus.com/bid/53011 vdb-entryx_refsource_BID
    http://secunia.com/advisories/48811 third-party-advisoryx_refsource_SECUNIA
    https://exchange.xforce.ibmcloud.com/vulnerabilit… vdb-entryx_refsource_XF
    http://jvn.jp/en/jp/JVN33283707/index.html third-party-advisoryx_refsource_JVN
    Date Public
    2012-04-13 00:00
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "providerMetadata": {
              "dateUpdated": "2024-08-06T18:53:36.540Z",
              "orgId": "af854a3a-2127-422b-91ae-364da2661108",
              "shortName": "CVE"
            },
            "references": [
              {
                "name": "JVNDB-2012-000031",
                "tags": [
                  "third-party-advisory",
                  "x_refsource_JVNDB",
                  "x_transferred"
                ],
                "url": "http://jvndb.jvn.jp/jvndb/JVNDB-2012-000031"
              },
              {
                "name": "[ruby-list] 20100619 ANN: ActiveScriptRuby 1.8.7",
                "tags": [
                  "mailing-list",
                  "x_refsource_MLIST",
                  "x_transferred"
                ],
                "url": "http://blade.nagaokaut.ac.jp/cgi-bin/scat.rb/ruby/ruby-list/47170"
              },
              {
                "name": "53011",
                "tags": [
                  "vdb-entry",
                  "x_refsource_BID",
                  "x_transferred"
                ],
                "url": "http://www.securityfocus.com/bid/53011"
              },
              {
                "name": "48811",
                "tags": [
                  "third-party-advisory",
                  "x_refsource_SECUNIA",
                  "x_transferred"
                ],
                "url": "http://secunia.com/advisories/48811"
              },
              {
                "name": "activescriptruby-grscript18-code-exec(74866)",
                "tags": [
                  "vdb-entry",
                  "x_refsource_XF",
                  "x_transferred"
                ],
                "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/74866"
              },
              {
                "name": "JVN#33283707",
                "tags": [
                  "third-party-advisory",
                  "x_refsource_JVN",
                  "x_transferred"
                ],
                "url": "http://jvn.jp/en/jp/JVN33283707/index.html"
              }
            ],
            "title": "CVE Program Container"
          }
        ],
        "cna": {
          "affected": [
            {
              "product": "n/a",
              "vendor": "n/a",
              "versions": [
                {
                  "status": "affected",
                  "version": "n/a"
                }
              ]
            }
          ],
          "datePublic": "2012-04-13T00:00:00.000Z",
          "descriptions": [
            {
              "lang": "en",
              "value": "GRScript18.dll before 1.2.2.0 in ActiveScriptRuby (ASR) before 1.8.7 does not properly restrict interaction with an Internet Explorer ActiveX environment, which allows remote attackers to execute arbitrary Ruby code via a crafted HTML document."
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "description": "n/a",
                  "lang": "en",
                  "type": "text"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2017-12-28T21:57:01.000Z",
            "orgId": "ede6fdc4-6654-4307-a26d-3331c018e2ce",
            "shortName": "jpcert"
          },
          "references": [
            {
              "name": "JVNDB-2012-000031",
              "tags": [
                "third-party-advisory",
                "x_refsource_JVNDB"
              ],
              "url": "http://jvndb.jvn.jp/jvndb/JVNDB-2012-000031"
            },
            {
              "name": "[ruby-list] 20100619 ANN: ActiveScriptRuby 1.8.7",
              "tags": [
                "mailing-list",
                "x_refsource_MLIST"
              ],
              "url": "http://blade.nagaokaut.ac.jp/cgi-bin/scat.rb/ruby/ruby-list/47170"
            },
            {
              "name": "53011",
              "tags": [
                "vdb-entry",
                "x_refsource_BID"
              ],
              "url": "http://www.securityfocus.com/bid/53011"
            },
            {
              "name": "48811",
              "tags": [
                "third-party-advisory",
                "x_refsource_SECUNIA"
              ],
              "url": "http://secunia.com/advisories/48811"
            },
            {
              "name": "activescriptruby-grscript18-code-exec(74866)",
              "tags": [
                "vdb-entry",
                "x_refsource_XF"
              ],
              "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/74866"
            },
            {
              "name": "JVN#33283707",
              "tags": [
                "third-party-advisory",
                "x_refsource_JVN"
              ],
              "url": "http://jvn.jp/en/jp/JVN33283707/index.html"
            }
          ],
          "x_legacyV4Record": {
            "CVE_data_meta": {
              "ASSIGNER": "vultures@jpcert.or.jp",
              "ID": "CVE-2012-1241",
              "STATE": "PUBLIC"
            },
            "affects": {
              "vendor": {
                "vendor_data": [
                  {
                    "product": {
                      "product_data": [
                        {
                          "product_name": "n/a",
                          "version": {
                            "version_data": [
                              {
                                "version_value": "n/a"
                              }
                            ]
                          }
                        }
                      ]
                    },
                    "vendor_name": "n/a"
                  }
                ]
              }
            },
            "data_format": "MITRE",
            "data_type": "CVE",
            "data_version": "4.0",
            "description": {
              "description_data": [
                {
                  "lang": "eng",
                  "value": "GRScript18.dll before 1.2.2.0 in ActiveScriptRuby (ASR) before 1.8.7 does not properly restrict interaction with an Internet Explorer ActiveX environment, which allows remote attackers to execute arbitrary Ruby code via a crafted HTML document."
                }
              ]
            },
            "problemtype": {
              "problemtype_data": [
                {
                  "description": [
                    {
                      "lang": "eng",
                      "value": "n/a"
                    }
                  ]
                }
              ]
            },
            "references": {
              "reference_data": [
                {
                  "name": "JVNDB-2012-000031",
                  "refsource": "JVNDB",
                  "url": "http://jvndb.jvn.jp/jvndb/JVNDB-2012-000031"
                },
                {
                  "name": "[ruby-list] 20100619 ANN: ActiveScriptRuby 1.8.7",
                  "refsource": "MLIST",
                  "url": "http://blade.nagaokaut.ac.jp/cgi-bin/scat.rb/ruby/ruby-list/47170"
                },
                {
                  "name": "53011",
                  "refsource": "BID",
                  "url": "http://www.securityfocus.com/bid/53011"
                },
                {
                  "name": "48811",
                  "refsource": "SECUNIA",
                  "url": "http://secunia.com/advisories/48811"
                },
                {
                  "name": "activescriptruby-grscript18-code-exec(74866)",
                  "refsource": "XF",
                  "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/74866"
                },
                {
                  "name": "JVN#33283707",
                  "refsource": "JVN",
                  "url": "http://jvn.jp/en/jp/JVN33283707/index.html"
                }
              ]
            }
          }
        }
      },
      "cveMetadata": {
        "assignerOrgId": "ede6fdc4-6654-4307-a26d-3331c018e2ce",
        "assignerShortName": "jpcert",
        "cveId": "CVE-2012-1241",
        "datePublished": "2012-04-16T16:00:00.000Z",
        "dateReserved": "2012-02-21T00:00:00.000Z",
        "dateUpdated": "2024-08-06T18:53:36.540Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }

    CVE-2012-1241 (GCVE-0-2012-1241)

    Vulnerability from cvelistv5 – Published: 2012-04-16 16:00 – Updated: 2024-08-06 18:53
    VLAI
    Summary
    GRScript18.dll before 1.2.2.0 in ActiveScriptRuby (ASR) before 1.8.7 does not properly restrict interaction with an Internet Explorer ActiveX environment, which allows remote attackers to execute arbitrary Ruby code via a crafted HTML document.
    Severity
    No CVSS data available.
    CWE
    • n/a
    Assigner
    References
    URL Tags
    http://jvndb.jvn.jp/jvndb/JVNDB-2012-000031 third-party-advisoryx_refsource_JVNDB
    http://blade.nagaokaut.ac.jp/cgi-bin/scat.rb/ruby… mailing-listx_refsource_MLIST
    http://www.securityfocus.com/bid/53011 vdb-entryx_refsource_BID
    http://secunia.com/advisories/48811 third-party-advisoryx_refsource_SECUNIA
    https://exchange.xforce.ibmcloud.com/vulnerabilit… vdb-entryx_refsource_XF
    http://jvn.jp/en/jp/JVN33283707/index.html third-party-advisoryx_refsource_JVN
    Date Public
    2012-04-13 00:00
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "providerMetadata": {
              "dateUpdated": "2024-08-06T18:53:36.540Z",
              "orgId": "af854a3a-2127-422b-91ae-364da2661108",
              "shortName": "CVE"
            },
            "references": [
              {
                "name": "JVNDB-2012-000031",
                "tags": [
                  "third-party-advisory",
                  "x_refsource_JVNDB",
                  "x_transferred"
                ],
                "url": "http://jvndb.jvn.jp/jvndb/JVNDB-2012-000031"
              },
              {
                "name": "[ruby-list] 20100619 ANN: ActiveScriptRuby 1.8.7",
                "tags": [
                  "mailing-list",
                  "x_refsource_MLIST",
                  "x_transferred"
                ],
                "url": "http://blade.nagaokaut.ac.jp/cgi-bin/scat.rb/ruby/ruby-list/47170"
              },
              {
                "name": "53011",
                "tags": [
                  "vdb-entry",
                  "x_refsource_BID",
                  "x_transferred"
                ],
                "url": "http://www.securityfocus.com/bid/53011"
              },
              {
                "name": "48811",
                "tags": [
                  "third-party-advisory",
                  "x_refsource_SECUNIA",
                  "x_transferred"
                ],
                "url": "http://secunia.com/advisories/48811"
              },
              {
                "name": "activescriptruby-grscript18-code-exec(74866)",
                "tags": [
                  "vdb-entry",
                  "x_refsource_XF",
                  "x_transferred"
                ],
                "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/74866"
              },
              {
                "name": "JVN#33283707",
                "tags": [
                  "third-party-advisory",
                  "x_refsource_JVN",
                  "x_transferred"
                ],
                "url": "http://jvn.jp/en/jp/JVN33283707/index.html"
              }
            ],
            "title": "CVE Program Container"
          }
        ],
        "cna": {
          "affected": [
            {
              "product": "n/a",
              "vendor": "n/a",
              "versions": [
                {
                  "status": "affected",
                  "version": "n/a"
                }
              ]
            }
          ],
          "datePublic": "2012-04-13T00:00:00.000Z",
          "descriptions": [
            {
              "lang": "en",
              "value": "GRScript18.dll before 1.2.2.0 in ActiveScriptRuby (ASR) before 1.8.7 does not properly restrict interaction with an Internet Explorer ActiveX environment, which allows remote attackers to execute arbitrary Ruby code via a crafted HTML document."
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "description": "n/a",
                  "lang": "en",
                  "type": "text"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2017-12-28T21:57:01.000Z",
            "orgId": "ede6fdc4-6654-4307-a26d-3331c018e2ce",
            "shortName": "jpcert"
          },
          "references": [
            {
              "name": "JVNDB-2012-000031",
              "tags": [
                "third-party-advisory",
                "x_refsource_JVNDB"
              ],
              "url": "http://jvndb.jvn.jp/jvndb/JVNDB-2012-000031"
            },
            {
              "name": "[ruby-list] 20100619 ANN: ActiveScriptRuby 1.8.7",
              "tags": [
                "mailing-list",
                "x_refsource_MLIST"
              ],
              "url": "http://blade.nagaokaut.ac.jp/cgi-bin/scat.rb/ruby/ruby-list/47170"
            },
            {
              "name": "53011",
              "tags": [
                "vdb-entry",
                "x_refsource_BID"
              ],
              "url": "http://www.securityfocus.com/bid/53011"
            },
            {
              "name": "48811",
              "tags": [
                "third-party-advisory",
                "x_refsource_SECUNIA"
              ],
              "url": "http://secunia.com/advisories/48811"
            },
            {
              "name": "activescriptruby-grscript18-code-exec(74866)",
              "tags": [
                "vdb-entry",
                "x_refsource_XF"
              ],
              "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/74866"
            },
            {
              "name": "JVN#33283707",
              "tags": [
                "third-party-advisory",
                "x_refsource_JVN"
              ],
              "url": "http://jvn.jp/en/jp/JVN33283707/index.html"
            }
          ],
          "x_legacyV4Record": {
            "CVE_data_meta": {
              "ASSIGNER": "vultures@jpcert.or.jp",
              "ID": "CVE-2012-1241",
              "STATE": "PUBLIC"
            },
            "affects": {
              "vendor": {
                "vendor_data": [
                  {
                    "product": {
                      "product_data": [
                        {
                          "product_name": "n/a",
                          "version": {
                            "version_data": [
                              {
                                "version_value": "n/a"
                              }
                            ]
                          }
                        }
                      ]
                    },
                    "vendor_name": "n/a"
                  }
                ]
              }
            },
            "data_format": "MITRE",
            "data_type": "CVE",
            "data_version": "4.0",
            "description": {
              "description_data": [
                {
                  "lang": "eng",
                  "value": "GRScript18.dll before 1.2.2.0 in ActiveScriptRuby (ASR) before 1.8.7 does not properly restrict interaction with an Internet Explorer ActiveX environment, which allows remote attackers to execute arbitrary Ruby code via a crafted HTML document."
                }
              ]
            },
            "problemtype": {
              "problemtype_data": [
                {
                  "description": [
                    {
                      "lang": "eng",
                      "value": "n/a"
                    }
                  ]
                }
              ]
            },
            "references": {
              "reference_data": [
                {
                  "name": "JVNDB-2012-000031",
                  "refsource": "JVNDB",
                  "url": "http://jvndb.jvn.jp/jvndb/JVNDB-2012-000031"
                },
                {
                  "name": "[ruby-list] 20100619 ANN: ActiveScriptRuby 1.8.7",
                  "refsource": "MLIST",
                  "url": "http://blade.nagaokaut.ac.jp/cgi-bin/scat.rb/ruby/ruby-list/47170"
                },
                {
                  "name": "53011",
                  "refsource": "BID",
                  "url": "http://www.securityfocus.com/bid/53011"
                },
                {
                  "name": "48811",
                  "refsource": "SECUNIA",
                  "url": "http://secunia.com/advisories/48811"
                },
                {
                  "name": "activescriptruby-grscript18-code-exec(74866)",
                  "refsource": "XF",
                  "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/74866"
                },
                {
                  "name": "JVN#33283707",
                  "refsource": "JVN",
                  "url": "http://jvn.jp/en/jp/JVN33283707/index.html"
                }
              ]
            }
          }
        }
      },
      "cveMetadata": {
        "assignerOrgId": "ede6fdc4-6654-4307-a26d-3331c018e2ce",
        "assignerShortName": "jpcert",
        "cveId": "CVE-2012-1241",
        "datePublished": "2012-04-16T16:00:00.000Z",
        "dateReserved": "2012-02-21T00:00:00.000Z",
        "dateUpdated": "2024-08-06T18:53:36.540Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }