Ruby On Rails Known Secret Session Cookie Remote Code Execution

2016年10月26日

Email
Facebook
Twitter
Google+
Linkedin

危険度: : 緊急

概要

This module implements Remote Command Execution on Ruby on Rails applications. Prerequisite is knowledge of the "secret_token" (Rails 2/3) or "secret_key_base" (Rails 4). The values for those can be usually found in the default location. The module achieves RCE by deserialization of a crafted Ruby Object.

トレンドマイクロの対策

Apply associated Trend Micro DPI Rules.

対応方法

Trend Micro Deep Security DPI Rule Number: 1005639