Loading HuntDB...
Hunt
Vulnerability Intelligence by wss.sh
Home Daily Briefings High Impact CVEs Recent Exploits KEV Catalog GitHub Advisories Latest Updates Security News
Sign In Sign Up

Segmentation fault when a Ruby method is invoked by a C method via Object#send

High
S
shopify-scripts
Submitted None
Actions:
View on HackerOne
Reported by h72

Vulnerability Details

Technical details and impact analysis

Uncontrolled Resource Consumption
We can arrange for C to call `Object#send` by aliasing it over `initialize`. This will cause `Class#new` (a C function) to call `#initialize` (which is actually `Object#send`) with arbitrary arguments. If we invoke a Ruby method through `Object#send`, mruby segfaults: ``` def foo end class X alias_method :initialize, :send end X.new.send(:foo) ```

Report Details

Additional information and metadata

State

Closed

Substate

Resolved

Bounty

$8000.00

Submitted

Weakness

Uncontrolled Resource Consumption