VYPR
High severityNVD Advisory· Published Dec 9, 2008· Updated Jun 16, 2026

CVE-2008-4310

CVE-2008-4310

Description

httputils.rb in WEBrick in Ruby 1.8.1 and 1.8.5, as used in Red Hat Enterprise Linux 4 and 5, allows remote attackers to cause a denial of service (CPU consumption) via a crafted HTTP request. NOTE: this issue exists because of an incomplete fix for CVE-2008-3656.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected packages

Versions sourced from the GitHub Security Advisory.

PackageAffected versionsPatched versions
webrickRubyGems
< 1.3.11.3.1

Affected products

3
  • Ruby Lang/Ruby2 versions
    cpe:2.3:a:ruby-lang:ruby:1.8.1:*:*:*:*:*:*:*+ 1 more
    • cpe:2.3:a:ruby-lang:ruby:1.8.1:*:*:*:*:*:*:*
    • cpe:2.3:a:ruby-lang:ruby:1.8.5:*:*:*:*:*:*:*
  • ghsa-coords
    Range: < 1.3.1

Patches

Vulnerability mechanics

References

10

News mentions

0

No linked articles in our index yet.