Perl Safe.pm Access Bypass

2002-11-05T16:19:25
ID OSVDB:2183
Type osvdb
Reporter OSVDB
Modified 2002-11-05T16:19:25

Description

Vulnerability Description

Safe.pm contains a flaw that could allow a local or remote attacker execute code outside of Safe.pm's restricted environment called a compartment. If the compartment has been accessed at least once, an attacker could change the the mask of the compartment to access code outside of the compartment.

Technical Description

The flaw exists in the Safe->reval() code of Safe.pm. To change the mask the attacker would need to modify the @_ variable.

Solution Description

Upgrade to the latest version of Safe.pm. Check with your vendor's website for OS specific updates or check http://www.cpan.org

Short Description

Safe.pm contains a flaw that could allow a local or remote attacker execute code outside of Safe.pm's restricted environment called a compartment. If the compartment has been accessed at least once, an attacker could change the the mask of the compartment to access code outside of the compartment.

References:

Vendor URL: http://www.perl.org/ Vendor Specific Advisory URL Vendor Specific Advisory URL Vendor Specific Advisory URL Secunia Advisory ID:10750 Other Advisory URL: http://archives.neohapsis.com/archives/vulnwatch/2002-q4/0061.html Other Advisory URL: http://groups.google.com/groups?threadm=rt-17744-39131.3.96370682846239%40bugs6.perl.org Other Advisory URL: http://use.perl.org/articles/02/10/06/1118222.shtml?tid=5 Mail List Post: http://archives.neohapsis.com/archives/vulnwatch/2002-q4/0061.html ISS X-Force ID: 10574 Generic Informational URL: http://search.cpan.org/ Generic Informational URL: http://use.perl.org/articles/02/10/06/1118222.shtml?tid=5 CVE-2002-1323 CIAC Advisory: n-155 Bugtraq ID: 6111