SQL-Ledger terminal Variable Arbitrary Perl Code Execution

2006-09-11T05:34:02
ID OSVDB:28754
Type osvdb
Reporter OSVDB
Modified 2006-09-11T05:34:02

Description

Solution Description

Upgrade to version 2.6.19 or higher, as it has been reported to fix this vulnerability. An upgrade is required as there are no known workarounds.

References:

Vendor URL: http://www.sql-ledger.org/ Secunia Advisory ID:21886 Secunia Advisory ID:23419 Secunia Advisory ID:23375 Other Advisory URL: http://www.us.debian.org/security/2006/dsa-1239 Mail List Post: http://archives.neohapsis.com/archives/bugtraq/2006-09/0177.html Mail List Post: http://archives.neohapsis.com/archives/bugtraq/2007-01/0629.html FrSIRT Advisory: ADV-2007-0407 FrSIRT Advisory: ADV-2006-5043 CVE-2006-5872 Bugtraq ID: 21634