VYPR
Unrated severityNVD Advisory· Published Dec 6, 2006· Updated Jun 16, 2026

CVE-2006-6303

CVE-2006-6303

Description

The read_multipart function in cgi.rb in Ruby before 1.8.5-p2 does not properly detect boundaries in MIME multipart content, which allows remote attackers to cause a denial of service (infinite loop) via crafted HTTP requests, a different issue than CVE-2006-5467.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

9
  • cpe:2.3:a:yukihiro_matsumoto:ruby:1.8:*:*:*:*:*:*:*+ 7 more
    • cpe:2.3:a:yukihiro_matsumoto:ruby:1.8:*:*:*:*:*:*:*
    • cpe:2.3:a:yukihiro_matsumoto:ruby:1.8.1:*:*:*:*:*:*:*
    • cpe:2.3:a:yukihiro_matsumoto:ruby:1.8.2:*:*:*:*:*:*:*
    • cpe:2.3:a:yukihiro_matsumoto:ruby:1.8.2_pre1:*:*:*:*:*:*:*
    • cpe:2.3:a:yukihiro_matsumoto:ruby:1.8.2_pre2:*:*:*:*:*:*:*
    • cpe:2.3:a:yukihiro_matsumoto:ruby:1.8.3:*:*:*:*:*:*:*
    • cpe:2.3:a:yukihiro_matsumoto:ruby:1.8.4:*:*:*:*:*:*:*
    • cpe:2.3:a:yukihiro_matsumoto:ruby:1.8.5:*:*:*:*:*:*:*
  • Ruby Lang/Rubyllm-fuzzy
    Range: <1.8.5-p2

Patches

Vulnerability mechanics

References

24

News mentions

0

No linked articles in our index yet.