40 matches found
Cross site scripting
The Config::IniFiles module before 2.71 for Perl creates temporary files with predictable names, which allows local users to overwrite arbitrary files via a symlink attack. NOTE: some of these details are obtained from third party information. NOTE: it has been reported that this might only be...
CVE-2012-2451
CVE-2012-2451 concerns the Perl module Config::IniFiles (before 2.71), which creates temporary files with predictable names. This enables local attackers to perform a symlink attack to overwrite arbitrary files in the directory containing an .ini file, potentially affecting the privileges of the ...
CVE-2012-2451
The Config::IniFiles module before 2.71 for Perl creates temporary files with predictable names, which allows local users to overwrite arbitrary files via a symlink attack. NOTE: some of these details are obtained from third party information. NOTE: it has been reported that this might only be...
CVE-2012-2451
The Config::IniFiles module before 2.71 for Perl creates temporary files with predictable names, which allows local users to overwrite arbitrary files via a symlink attack. NOTE: some of these details are obtained from third party information. NOTE: it has been reported that this might only be...
CVE-2012-2451
The Config::IniFiles module before 2.71 for Perl creates temporary files with predictable names, which allows local users to overwrite arbitrary files via a symlink attack. NOTE: some of these details are obtained from third party information. NOTE: it has been reported that this might only be...
FreeBSD Ports: p5-Config-IniFiles
The remote host is missing an update to the system as announced in the referenced advisory. SPDX-FileCopyrightText: 2012 E-Soft Inc. Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only...
FreeBSD Ports: p5-Config-IniFiles
The remote host is missing an update to the system as announced in the referenced advisory. VID 725ab25a-987b-11e1-a2ef-001fd0af1a4c OpenVAS Vulnerability Test $ Description: Auto generated from VID 725ab25a-987b-11e1-a2ef-001fd0af1a4c Authors: Thomas Reinke Copyright: Copyright c 2012 E-Soft Inc...
Fedora 17 : perl-Config-IniFiles-2.72-1.fc17 (2012-7763)
Update to 2.72, fixes CVE-2012-2451. Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues. %NASLMINLEVEL 703...
[SECURITY] Fedora 17 Update: perl-Config-IniFiles-2.72-1.fc17
Config::IniFiles provides a way to have readable configuration files outside your Perl script. Configurations can be imported inherited, stacked,..., sections can be grouped, and settings can be accessed from a tied hash...
[SECURITY] Fedora 16 Update: perl-Config-IniFiles-2.72-1.fc16
Config::IniFiles provides a way to have readable configuration files outside your Perl script. Configurations can be imported inherited, stacked,..., sections can be grouped, and settings can be accessed from a tied hash...
[SECURITY] Fedora 15 Update: perl-Config-IniFiles-2.72-1.fc15
Config::IniFiles provides a way to have readable configuration files outside your Perl script. Configurations can be imported inherited, stacked,..., sections can be grouped, and settings can be accessed from a tied hash...
Fedora Update for perl-Config-IniFiles FEDORA-2012-7777
Check for the Version of perl-Config-IniFiles OpenVAS Vulnerability Test Fedora Update for perl-Config-IniFiles FEDORA-2012-7777 Authors: System Generated Check Copyright: Copyright c 2012 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it...
Fedora Update for perl-Config-IniFiles FEDORA-2012-7802
Check for the Version of perl-Config-IniFiles OpenVAS Vulnerability Test Fedora Update for perl-Config-IniFiles FEDORA-2012-7802 Authors: System Generated Check Copyright: Copyright c 2012 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it...
Fedora 15 : perl-Config-IniFiles-2.72-1.fc15 (2012-7802)
Update to 2.72, fixes CVE-2012-2451. Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues. %NASLMINLEVEL 703...
Fedora 16 : perl-Config-IniFiles-2.72-1.fc16 (2012-7777)
Update to 2.72, fixes CVE-2012-2451. Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues. %NASLMINLEVEL 703...
Fedora Update for perl-Config-IniFiles FEDORA-2012-7777
The remote host is missing an update for the SPDX-FileCopyrightText: 2012 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription scriptxrefname:"URL",...
Fedora Update for perl-Config-IniFiles FEDORA-2012-7802
The remote host is missing an update for the SPDX-FileCopyrightText: 2012 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription scriptxrefname:"URL",...
FreeBSD : p5-Config-IniFiles -- unsafe temporary file creation (725ab25a-987b-11e1-a2ef-001fd0af1a4c)
Unsafe Temporary file creation Config::IniFiles used a predictable name for its temporary file without opening it correctly. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from the FreeBSD VuXML database : Copyright...
Perl Config::IniFiles Module不安全临时文件创建漏洞
BUGTRAQ ID: 53361 CVE ID: CVE-2012-2451 Perl是一种高级、通用、直译式、动态的程序语言。 Perl的Config::IniFiles模块中存在安全漏洞,应用使用临时文件的方式不安全,可被恶意本地用户利用通过符号链接攻击以提升的权限执行某些操作,例如覆盖任意文件。 0 Perl Config::IniFiles 2.7 厂商补丁: Perl ---- 目前厂商已经发布了升级补丁以修复这个安全问题,请到厂商的主页下载: http://www.perl.com...
p5-Config-IniFiles -- unsafe temporary file creation
Unsafe Temporary file creation Config::IniFiles used a predictable name for its temporary file without opening it correctly...