Vulnerabilities > CVE-2012-5380 - Unspecified vulnerability in Ruby-Lang Ruby 1.9.3
Attack vector
UNKNOWN Attack complexity
UNKNOWN Privileges required
UNKNOWN Confidentiality impact
UNKNOWN Integrity impact
UNKNOWN Availability impact
UNKNOWN ruby-lang
exploit available
Summary
Untrusted search path vulnerability in the installation functionality in Ruby 1.9.3-p194, when installed in the top-level C:\ directory, might allow local users to gain privileges via a Trojan horse DLL in the C:\Ruby193\bin directory, which may be added to the PATH system environment variable by an administrator, as demonstrated by a Trojan horse wlbsctrl.dll file used by the "IKE and AuthIP IPsec Keying Modules" system service in Windows Vista SP1, Windows Server 2008 SP2, Windows 7 SP1, and Windows 8 Release Preview. NOTE: CVE disputes this issue because the unsafe PATH is established only by a separate administrative action that is not a default part of the Ruby installation
Vulnerable Configurations
| Part | Description | Count |
|---|---|---|
| Application | 1 |
Exploit-Db
| description | IKE and AuthIP IPsec Keyring Modules Service (IKEEXT) Missing DLL. CVE-2012-5377,CVE-2012-5378,CVE-2012-5379,CVE-2012-5380,CVE-2012-5381,CVE-2012-5382,CVE-20... |
| id | EDB-ID:28130 |
| last seen | 2016-02-03 |
| modified | 2013-09-06 |
| published | 2013-09-06 |
| reporter | metasploit |
| source | https://www.exploit-db.com/download/28130/ |
| title | IKE and AuthIP IPsec Keyring Modules Service IKEEXT Missing DLL |