How to reproduce: CVE-2013-1854 Symbol DoS vulnerability in Active Record

Frederick_Cheung · April 30, 2013, 9:33pm

Hey,

I need to find out the impact of vulnerability: CVE-2013-1854 Symbol DoS vulnerability in Active Record

Is there a way I can test my application with DoS attack by doing some manual code or something like that.

On rails console, I tried to do something like:

User.where(:email => {:email => ‘test’})

SELECT users.* FROM users WHERE email.email = ‘test’

it gave “ActiveRecord::StatementInvalid:” exception.

How would requests like this lead to DoS attack. Its just like any other invalid sql.

The vulnerability is that (depending on how you use activerecord), an attacker can cause arbitrary strings to be turned into symbols. Ruby never garbage collects symbols, so this can be used to exhaust all the memory available to your application.

Fred

Farukh_D.M · May 1, 2013, 5:35pm

Wow, that is one hell of an eye opener. Thanks very much for the reply.

I appreciate very much.

Regards

Farukh D M

Topic	Replies	Views
[CVE-2023-22796] Possible ReDoS based DoS vulnerability in Active Support's underscore Security Announcements patch , activesupport , security	7613	January 17, 2023
[CVE-2021-22880] Possible DoS Vulnerability in Active Record PostgreSQL adapter Security Announcements	10624	February 10, 2021
[CVE-2023-22794] SQL Injection Vulnerability via ActiveRecord comments Security Announcements patch , activerecord , security	31020	January 17, 2023
[CVE-2022-44566] Possible Denial of Service Vulnerability in ActiveRecord's PostgreSQL adapter Security Announcements patch , activerecord , security	7470	January 17, 2023
[CVE-2023-22795] Possible ReDoS based DoS vulnerability in Action Dispatch Security Announcements patch , security , actiondispatch	7636	January 17, 2023

How to reproduce: CVE-2013-1854 Symbol DoS vulnerability in Active Record

Related topics

More Resources