CVE-2014-5002 (lynx): lynx Gem for Ruby command/basic.rb Process Table Local Plaintext Password Disclosure

June 30th, 2014

ADVISORIES

CVE-2014-5002 (NVD)
OSVDB-108580

GEM

PATCHED VERSIONS

>= 1.0.0

DESCRIPTION

lynx Gem for Ruby contains a flaw in command/basic.rb that is due to the application exposing password information in plaintext in the process table. This may allow a local attacker to gain access to password information.

RubySec

CVE-2014-5002 (lynx): lynx Gem for Ruby command/basic.rb Process Table Local Plaintext Password Disclosure

ADVISORIES

GEM

PATCHED VERSIONS

DESCRIPTION

Recent Advisories