dawnscanner 1.3.1 → 1.3.5

data/lib/dawn/kb/cve_2004_0755.rb

@@ -11,6 +11,9 @@
             :name=>"CVE-2004-0755",
             :cvss=>"AV:L/AC:L/Au:N/C:P/I:N/A:N",
             :release_date => Date.new(2004, 10, 20),
+            :cve=>"2004-0755",
+            :severity=>:medium,
+            :priority=>:medium,
             :cwe=>"",
             :owasp=>"A9", 
             :applies=>["rails", "sinatra", "padrino"],

data/lib/dawn/kb/cve_2004_0983.rb

@@ -10,6 +10,9 @@
             :name=>"CVE-2004-0983",
             :cvss=>"AV:N/AC:L/Au:N/C:N/I:N/A:P",
             :release_date => Date.new(2005, 03, 01),
+            :cve=>"2004-0983",
+            :severity=>:high,
+            :priority=>:high,
             :cwe=>"",
             :owasp=>"A9", 
             :applies=>["rails", "sinatra", "padrino"],

data/lib/dawn/kb/cve_2005_1992.rb

@@ -11,6 +11,9 @@
             :name=>"CVE-2005-1992",
             :cvss=>"AV:N/AC:L/Au:N/C:P/I:P/A:P",
             :release_date => Date.new(2005, 06, 20),
+            :cve=>"CVE-2005-1992",
+            :priority=>:high,
+            :severity=>:high,
             :cwe=>"",
             :owasp=>"A9", 
             :applies=>["rails", "sinatra", "padrino"],

data/lib/dawn/kb/cve_2005_2337.rb

@@ -10,6 +10,9 @@
             :name=>"CVE-2005-2337",
             :cvss=>"AV:N/AC:L/Au:N/C:P/I:P/A:P",
             :release_date => Date.new(2005, 10, 07),
+            :cve=>"CVE-2005-2337",
+            :severity=>:high,
+            :priority=>:high,
             :cwe=>"",
             :owasp=>"A9", 
             :applies=>["rails", "sinatra", "padrino"],

data/lib/dawn/kb/cve_2006_3694.rb

@@ -11,6 +11,8 @@
             :cvss=>"AV:N/AC:L/Au:N/C:P/I:P/A:N",
             :release_date => Date.new(2006, 7, 21),
             :cwe=>"",
+            :severity=>:medium,
+            :priority=>:medium,
             :owasp=>"A9", 
             :applies=>["rails", "sinatra", "padrino"],
             :kind=>Dawn::KnowledgeBase::RUBY_VERSION_CHECK,

data/lib/dawn/kb/cve_2007_0469.rb

@@ -11,6 +11,8 @@
             :cvss=>"AV:N/AC:M/Au:N/C:C/I:C/A:C",
             :release_date => Date.new(2007, 1, 24),
             :cwe=>"",
+            :severity=>:high,
+            :priority=>:high,
             :owasp=>"A9", 
             :applies=>["rails", "sinatra", "padrino"],
             :kind=>Dawn::KnowledgeBase::DEPENDENCY_CHECK,

data/lib/dawn/kb/cve_2007_5380.rb

@@ -11,6 +11,8 @@
             :cvss=>"AV:N/AC:M/Au:N/C:P/I:P/A:P",
             :release_date => Date.new(2007, 10, 19),
             :cwe=>"",
+            :severity=>:high,
+            :priority=>:high,
             :owasp=>"A9", 
             :applies=>["rails"],
             :kind=>Dawn::KnowledgeBase::DEPENDENCY_CHECK,

data/lib/dawn/kb/cve_2007_6077.rb

@@ -12,6 +12,8 @@
             :cvss=>"AV:N/AC:M/Au:N/C:P/I:P/A:P",
             :release_date => Date.new(2007, 11, 21),
             :cwe=>"362",
+            :severity=>:high,
+            :priority=>:high,
             :owasp=>"A9", 
             :applies=>["rails"],
             :kind=>Dawn::KnowledgeBase::DEPENDENCY_CHECK,

data/lib/dawn/kb/cve_2007_6612.rb

@@ -12,6 +12,8 @@
             :cvss=>"AV:N/AC:L/Au:N/C:P/I:P/A:N",
             :release_date => Date.new(2008, 3, 1),
             :cwe=>"",
+            :severity=>:high,
+            :priority=>:high,
             :owasp=>"A9", 
             :applies=>["rails", "sinatra", "padrino"],
             :kind=>Dawn::KnowledgeBase::DEPENDENCY_CHECK,

data/lib/dawn/kb/cve_2013_6416.rb

@@ -9,7 +9,7 @@
 
           super({
             :name=>"CVE-2013-6416",
-            :cvss=>"AV:N/AC:M/Au:N/C:N/I:P/A:N) ",
+            :cvss=>"AV:N/AC:M/Au:N/C:N/I:P/A:N",
             :release_date => Date.new(2013, 12, 7),
             :cwe=>"79",
             :owasp=>"A9", 

data/lib/dawn/kb/cve_2015_1840/cve_2015_1840_a.rb

@@ -0,0 +1,28 @@
+module Dawn
+		module Kb
+			# Automatically created with rake on 2015-07-29
+			class CVE_2015_1840_a
+				include DependencyCheck
+
+				def initialize
+          message = "jquery_ujs.js in jquery-rails before 3.1.3 and 4.x before 4.0.4 and rails.js in jquery-ujs before 1.0.4, as used with Ruby on Rails 3.x and 4.x, allow remote attackers to bypass the Same Origin Policy, and trigger transmission of a CSRF token to a different-domain web server, via a leading space character in a URL within an attribute value."
+
+          super({
+            :name=>"CVE-2015-1849",
+            :cvss=>"AV:N/AC:L/Au:N/C:P/I:N/A:N",
+            :release_date => Date.new(2015, 7, 26),
+            :cwe=>"200",
+            :owasp=>"A8",
+            :applies=>["rails"],
+            :kind=>Dawn::KnowledgeBase::DEPENDENCY_CHECK,
+            :message=>message,
+            :mitigation=>"Please upgrade jquery-ujs and jquery-rails gems to latest version.",
+            :aux_links=>["https://github.com/rails/jquery-rails/blob/master/CHANGELOG.md", "https://github.com/rails/jquery-ujs/blob/master/CHANGELOG.md"]
+           })
+
+          self.safe_dependencies = [{:name=>"jquery-rails", :version=>['4.0.2', '3.1.3']}]
+
+				end
+			end
+		end
+end

data/lib/dawn/kb/cve_2015_1840/cve_2015_1840_b.rb

@@ -0,0 +1,28 @@
+module Dawn
+		module Kb
+			# Automatically created with rake on 2015-07-29
+			class CVE_2015_1840_b
+				include DependencyCheck
+
+				def initialize
+          message = "jquery_ujs.js in jquery-rails before 3.1.3 and 4.x before 4.0.4 and rails.js in jquery-ujs before 1.0.4, as used with Ruby on Rails 3.x and 4.x, allow remote attackers to bypass the Same Origin Policy, and trigger transmission of a CSRF token to a different-domain web server, via a leading space character in a URL within an attribute value."
+
+          super({
+            :name=>"CVE-2015-1849",
+            :cvss=>"AV:N/AC:L/Au:N/C:P/I:N/A:N",
+            :release_date => Date.new(2015, 7, 26),
+            :cwe=>"200",
+            :owasp=>"A8",
+            :applies=>["rails"],
+            :kind=>Dawn::KnowledgeBase::DEPENDENCY_CHECK,
+            :message=>message,
+            :mitigation=>"Please upgrade jquery-ujs and jquery-rails gems to latest version.",
+            :aux_links=>["https://github.com/rails/jquery-rails/blob/master/CHANGELOG.md", "https://github.com/rails/jquery-ujs/blob/master/CHANGELOG.md"]
+           })
+
+          self.safe_dependencies = [{:name=>"jquery-ujs", :version=>['1.0.4']}]
+
+				end
+			end
+		end
+end

data/lib/dawn/kb/cve_2015_2963.rb

@@ -0,0 +1,27 @@
+module Dawn
+		module Kb
+			# Automatically created with rake on 2015-07-29
+			class CVE_2015_2963
+				include DependencyCheck
+
+				def initialize
+          message = "The thoughtbot paperclip gem before 4.2.2 for Ruby does not consider the content-type value during media-type validation, which allows remote attackers to upload HTML documents and conduct cross-site scripting (XSS) attacks via a spoofed value, as demonstrated by image/jpeg."
+          super({
+            :name=>"CVE-2015-2963",
+            :cvss=>"AV:N/AC:M/Au:N/C:N/I:P/A:N",
+            :release_date => Date.new(2015, 7, 10),
+            :cwe=>"79",
+            :owasp=>"A1",
+            :applies=>["sinatra", "padrino", "rails"],
+            :kind=>Dawn::KnowledgeBase::DEPENDENCY_CHECK,
+            :message=>message,
+            :mitigation=>"Please upgrade paperclip gem to latest version.",
+            :aux_links=>["https://github.com/thoughtbot/paperclip/commit/9aee4112f36058cd28d5fe4a006d6981bd1eda57","https://robots.thoughtbot.com/paperclip-security-release"]
+           })
+
+          self.safe_dependencies = [{:name=>"paperclip", :version=>['4.2.2']}]
+
+				end
+			end
+		end
+end

data/lib/dawn/kb/cve_2015_3224.rb

@@ -0,0 +1,26 @@
+module Dawn
+		module Kb
+			# Automatically created with rake on 2015-07-29
+			class CVE_2015_3224
+				include DependencyCheck
+
+				def initialize
+          message = "request.rb in Web Console before 2.1.3, as used with Ruby on Rails 3.x and 4.x, does not properly restrict the use of X-Forwarded-For headers in determining a client's IP address, which allows remote attackers to bypass the whitelisted_ips protection mechanism via a crafted request."
+           super({
+            :name=>"CVE-2015-3224",
+            :cvss=>"AV:N/AC:M/Au:N/C:N/I:P/A:N",
+            :release_date => Date.new(2015, 7, 26),
+            :cwe=>"284",
+            :owasp=>"A9",
+            :applies=>["rails"],
+            :kind=>Dawn::KnowledgeBase::DEPENDENCY_CHECK,
+            :message=>message,
+            :mitigation=>"Please upgrade web-console gem to latest version.",
+            :aux_links=>["https://groups.google.com/forum/message/raw?msg=rubyonrails-security/lzmz9_ijUFw/HBMPi4zp5NAJ"]
+           })
+
+           self.safe_dependencies = [{:name=>"web-console", :version=>['2.1.3']}]
+				end
+			end
+		end
+end

data/lib/dawn/kb/cve_2015_3225.rb

@@ -0,0 +1,28 @@
+module Dawn
+		module Kb
+			# Automatically created with rake on 2015-07-29
+			class CVE_2015_3225
+				include DependencyCheck
+
+				def initialize
+          message = "lib/rack/utils.rb in Rack before 1.5.4 and 1.6.x before 1.6.2, as used with Ruby on Rails 3.x and 4.x and other products, allows remote attackers to cause a denial of service (SystemStackError) via a request with a large parameter depth."
+
+          super({
+            :name=>"CVE-2015-3225",
+            :cvss=>"AV:N/AC:L/Au:N/C:N/I:N/A:P",
+            :release_date => Date.new(2015, 7, 26),
+            :cwe=>"",
+            :owasp=>"A9",
+            :applies=>["sinatra", "padrino", "rails"],
+            :kind=>Dawn::KnowledgeBase::DEPENDENCY_CHECK,
+            :message=>message,
+            :mitigation=>"Please upgrade rack gem to latest version or at least 1.5.4 or 1.6.2.",
+            :aux_links=>["https://groups.google.com/forum/message/raw?msg=rubyonrails-security/gcUbICUmKMc/qiCotVZwXrMJ"]
+           })
+
+          self.safe_dependencies = [{:name=>"rack", :version=>['1.5.4', '1.6.2']}]
+
+				end
+			end
+		end
+end

data/lib/dawn/kb/cve_2015_3226.rb

@@ -0,0 +1,27 @@
+module Dawn
+		module Kb
+			# Automatically created with rake on 2015-07-29
+			class CVE_2015_3226
+				include DependencyCheck
+
+				def initialize
+          message = "Cross-site scripting (XSS) vulnerability in json/encoding.rb in Active Support in Ruby on Rails 3.x and 4.1.x before 4.1.11 and 4.2.x before 4.2.2 allows remote attackers to inject arbitrary web script or HTML via a crafted Hash that is mishandled during JSON encoding."
+          super({
+            :name=>"CVE-2015-3226",
+            :cvss=>"AV:N/AC:M/Au:N/C:N/I:P/A:N",
+            :release_date => Date.new(2015, 7, 26),
+            :cwe=>"79",
+            :owasp=>"A3",
+            :applies=>["sinatra", "padrino", "rails"],
+            :kind=>Dawn::KnowledgeBase::DEPENDENCY_CHECK,
+            :message=>message,
+            :mitigation=>"Please upgrade activesupport gem to latest version or at least 4.1.12 or 4.2.3. This is automatically done by upgrading your Rails environment if you are using it.",
+            :aux_links=>["https://groups.google.com/forum/message/raw?msg=rubyonrails-security/7VlB_pck3hU/3QZrGIaQW6cJ"]
+           })
+
+          self.safe_dependencies = [{:name=>"activesupport", :version=>['4.1.12', '4.2.3', '3.99.99']}]
+
+				end
+			end
+		end
+end

data/lib/dawn/kb/cve_2015_3227.rb

@@ -0,0 +1,27 @@
+module Dawn
+		module Kb
+			# Automatically created with rake on 2015-07-29
+			class CVE_2015_3227
+				include DependencyCheck
+
+				def initialize
+          message = "The (1) jdom.rb and (2) rexml.rb components in Active Support in Ruby on Rails before 4.1.11 and 4.2.x before 4.2.2, when JDOM or REXML is enabled, allow remote attackers to cause a denial of service (SystemStackError) via a large XML document depth."
+
+          super({
+            :name=>"CVE-2015-3227",
+            :cvss=>"AV:N/AC:L/Au:N/C:N/I:N/A:P",
+            :release_date => Date.new(2015, 7, 26),
+            :cwe=>"",
+            :owasp=>"A9",
+            :applies=>["sinatra", "padrino", "rails"],
+            :kind=>Dawn::KnowledgeBase::DEPENDENCY_CHECK,
+            :message=>message,
+            :mitigation=>"Please upgrade activesupport gem to latest version or at least 4.1.12 or 4.2.3. This is automatically done by upgrading your Rails environment if you are using it.",
+            :aux_links=>["https://groups.google.com/forum/message/raw?msg=rubyonrails-security/bahr2JLnxvk/x4EocXnHPp8J"]
+           })
+
+          self.safe_dependencies = [{:name=>"activesupport", :version=>['4.1.12', '4.2.3']}]
+				end
+			end
+		end
+end

data/lib/dawn/kb/osvdb_118579.rb

@@ -0,0 +1,31 @@
+module Dawn
+		module Kb
+			# Automatically created with rake on 2015-04-04
+			class OSVDB_118579
+				# Include the testing skeleton for this Security Check
+				# include PatternMatchCheck
+				include DependencyCheck
+				# include RubyVersionCheck
+
+				def initialize
+          message = "xaviershay-dm-rails Gem for Ruby contains a flaw in the execute() function in /datamapper/dm-rails/blob/master/lib/dm-rails/storage.rb. The issue is due to the function exposing sensitive information via the process table. This may allow a local attack to gain access to MySQL credential information."
+          super({
+            :name=> "OSVDB_118579",
+            :cve=>"2015-2179",
+            :osvdb=>"118579",
+            :cvss=>"",
+            :release_date => Date.new(2015, 2, 17),
+            :cwe=>"",
+            :owasp=>"A9",
+            :applies=>["rails"],
+            :kind=>Dawn::KnowledgeBase::DEPENDENCY_CHECK,
+            :message=>message,
+            :mitigation=>"We are not currently aware of a solution for this vulnerability (4 April 2015)",
+            :aux_links=>[""]
+           })
+           self.safe_dependencies = [{:name=>"xaviershay-dm-rails", :version=>['0.8.0']}]
+
+				end
+			end
+		end
+end

data/lib/dawn/kb/osvdb_118830.rb

@@ -0,0 +1,32 @@
+module Dawn
+		module Kb
+			# Automatically created with rake on 2015-04-05
+			class OSVDB_118830
+				# Include the testing skeleton for this Security Check
+				# include PatternMatchCheck
+				include DependencyCheck
+				# include RubyVersionCheck
+
+				def initialize
+          message = "Doorkeeper Gem for Ruby contains a flaw in lib/doorkeeper/engine.rb. The issue is due to the program storing sensitive information in production logs. This may allow a local attacker to gain access to sensitive information."
+          super({
+            :name=> "OSVDB_118830",
+            :cve=>"",
+            :osvdb=>"118830",
+            :cvss=>"",
+            :release_date => Date.new(2015, 2, 10),
+            :cwe=>"",
+            :owasp=>"A6",
+            :applies=>["rails", "sinatra", "padrino"],
+            :kind=>Dawn::KnowledgeBase::DEPENDENCY_CHECK,
+            :message=>message,
+            :mitigation=>"Please upgrade doorkeeper gem version at least to 2.1.2. As a general rule, using the latest stable version is recommended.",
+            :aux_links=>[""]
+           })
+           self.safe_dependencies = [{:name=>"doorkeeper", :version=>['2.1.2']}]
+
+
+				end
+			end
+		end
+end

data/lib/dawn/kb/osvdb_118954.rb

@@ -0,0 +1,31 @@
+module Dawn
+		module Kb
+			# Automatically created with rake on 2015-04-04
+			class OSVDB_118954
+				# Include the testing skeleton for this Security Check
+				# include PatternMatchCheck
+				include DependencyCheck
+				# include RubyVersionCheck
+
+				def initialize
+          message = "Ruby on Rails contains a flaw that is triggered when handling a to_json call to ActiveModel::Name, which can cause an infinite loop. This may allow a remote attacker to cause a denial of service."
+          super({
+            :name=> "OSVDB_118954",
+            :cve=>"",
+            :osvdb=>"118954",
+            :cvss=>"",
+            :release_date => Date.new(2015, 2, 28),
+            :cwe=>"",
+            :owasp=>"A9",
+            :applies=>["rails"],
+            :kind=>Dawn::KnowledgeBase::DEPENDENCY_CHECK,
+            :message=>message,
+            :mitigation=>"Currently, there are no known workarounds or upgrades to correct this issue. However, a patch has been committed to the source code repository (e.g. GIT, CVS, SVN) that addresses this vulnerability. Until it is incorporated into the next release of the software, manually patching an existing installation is the only known available solution. Check the vendor links in the references section for more information.",
+            :aux_links=>[""]
+           })
+          self.safe_dependencies = [{:name=>"rails", :version=>['99.99.99']}]
+
+				end
+			end
+		end
+end

data/lib/dawn/kb/osvdb_119878.rb

@@ -0,0 +1,32 @@
+module Dawn
+		module Kb
+			# Automatically created with rake on 2015-04-04
+			class OSVDB_119878
+				# Include the testing skeleton for this Security Check
+				# include PatternMatchCheck
+				include DependencyCheck
+				# include RubyVersionCheck
+
+				def initialize
+          message="rest-client Gem for Ruby contains a flaw in abstract_response.rb related to the handling of set-cookie headers in redirection responses that allows a remote, user-assisted attacker to conduct a session fixation attack. This flaw exists because the application, when establishing a new session, does not invalidate an existing session identifier and assign a new one. With a specially crafted request fixating the session identifier, a context-dependent attacker can ensure a user authenticates with the known session identifier, allowing the session to be subsequently hijacked."
+
+          super({
+            :name=> "OSVDB_119878",
+            :cve=>"2015-1820",
+            :osvdb=>"119878",
+            :cvss=>"",
+            :release_date => Date.new(2015, 3, 24),
+            :cwe=>"",
+            :owasp=>"A9",
+            :applies=>["rails", "sinatra", "padrino"],
+            :kind=>Dawn::KnowledgeBase::DEPENDENCY_CHECK,
+            :message=>message,
+            :mitigation=>"The vulnerability at the 4 April 2015 it has not been fixed. Please refer to gem readme to check when vulnerability it has been fixed.",
+            :aux_links=>[""]
+           })
+           self.safe_dependencies = [{:name=>"rest-client", :version=>['99.99.99']}]
+
+				end
+			end
+		end
+end

data/lib/dawn/kb/osvdb_119927.rb

@@ -0,0 +1,33 @@
+module Dawn
+		module Kb
+			# Automatically created with rake on 2015-03-27
+			class OSVDB_119927
+				# Include the testing skeleton for this Security Check
+				# include PatternMatchCheck
+				include DependencyCheck
+				# include RubyVersionCheck
+
+				def initialize
+          message = "http Gem for Ruby contains a flaw related to certificate validation. The issue is due to a failure to call the OpenSSL::SSL::SSLSocket#post_connection_check method, leading to hostnames not being properly verified. By spoofing the TLS/SSL server via a certificate that appears valid, an attacker with the ability to intercept network traffic (e.g. MiTM, DNS cache poisoning) can disclose and optionally manipulate transmitted data."
+
+           super({
+            :name=> "OSVDB_119927",
+            :cve=>"2015-1828",
+            :osvdb=>"119927",
+            :cvss=>"",
+            :release_date => Date.new(2015, 3, 25),
+            :cwe=>"",
+            :owasp=>"A9",
+            :applies=>["rails", "sinatra", "padrino"],
+            :kind=>Dawn::KnowledgeBase::DEPENDENCY_CHECK,
+            :message=>message,
+            :mitigation=>"Please upgrade http gem version at least to 0.8.0. As a general rule, using the latest stable version is recommended.",
+            :aux_links=>[""]
+           })
+           self.safe_dependencies = [{:name=>"http", :version=>['0.8.0']}]
+
+
+				end
+			end
+		end
+end