2 matches found
OCS Inventory NG Agent 'Backend.pm' Perl Module Handling Code Execution Vulnerability
OCS Inventory NG Agent is prone to a vulnerability that lets local attackers execute arbitrary Perl code. Local attackers can leverage this issue to execute arbitrary code via the application's insecure Perl module search path. This may allow attackers to elevate their privileges and compromise t...
CVE-2009-0667
Untrusted search path vulnerability in Agent/Backend.pm in Ocsinventory-Agent before 0.0.9.3, and 1.x before 1.0.1, in OCS Inventory allows local users to gain privileges via a Trojan horse Perl module in an arbitrary directory...