CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

8 matches found

Tenable Nessus•added 2015/01/19 12:0 a.m.•52 views

Oracle Solaris Third-Party Patch Update : perl-58 (cve_2012_5526_configuration_vulnerability1)

The remote Solaris system is missing necessary patches to address security updates : - Race condition in the rmtree function in the File::Path module in Perl 5.6.1 and 5.8.4 sets read/write permissions for the world, which allows local users to delete arbitrary files and directories, and possibly...

7.2CVSS9AI score0.06571EPSS

Exploits4References10

Tenable Nessus•added 2015/01/19 12:0 a.m.•45 views

Oracle Solaris Third-Party Patch Update : perl-512 (cve_2012_5195_heap_buffer)

The remote Solaris system is missing necessary patches to address security updates : - Heap-based buffer overflow in the Perlrepeatcpy function in util.c in Perl 5.12.x before 5.12.5, 5.14.x before 5.14.3, and 5.15.x before 15.15.5 allows context-dependent attackers to cause a denial of service...

7.5CVSS8.4AI score0.81971EPSS

Exploits14References7

OpenVAS•added 2013/09/18 12:0 a.m.•28 views

Debian Security Advisory DSA 2587-1 (libcgi-pm-perl - HTTP header injection)

It was discovered that the CGI module for Perl does not filter LF characters in the Set-Cookie and P3P headers, potentially allowing attackers to inject HTTP headers. OpenVAS Vulnerability Test $Id: deb25871.nasl 6611 2017-07-07 12:07:20Z cfischer $ Auto-generated from advisory DSA 2587-1 using...

5CVSS0.1AI score0.0172EPSS

Exploits0References1

OpenVAS•added 2013/01/23 12:0 a.m.•30 views

Active Perl CGI.pm 'Set-Cookie' and 'P3P' HTTP Header Injection Vulnerability (Windows)

The host is installed with Active Perl and is prone to HTTP header injection vulnerability. OpenVAS Vulnerability Test $Id: gbactiveperlcgipmmoduleheaderinjevulnwin.nasl 6086 2017-05-09 09:03:30Z teissa $ Active Perl CGI.pm 'Set-Cookie' and 'P3P' HTTP Header Injection Vulnerability Windows Author...

5CVSS0.3AI score0.0172EPSS

Exploits0References3

OpenVAS•added 2012/12/18 12:0 a.m.•25 views

Mandriva Update for perl-CGI MDVSA-2012:180 (perl-CGI)

Check for the Version of perl-CGI OpenVAS Vulnerability Test Mandriva Update for perl-CGI MDVSA-2012:180 perl-CGI Authors: System Generated Check Copyright: Copyright c 2012 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it...

5CVSS9.6AI score0.0172EPSS

Exploits0References2

Ubuntu•added 2012/11/30 5:1 a.m.•63 views

USN-1643-1: Perl vulnerabilities

It was discovered that the decodexs function in the Encode module is vulnerable to a heap-based buffer overflow via a crafted Unicode string. An attacker could use this overflow to cause a denial of service. CVE-2011-2939 It was discovered that the 'new' constructor in the Digest module is...

7.5CVSS8.5AI score0.09609EPSS

Exploits3

OSV•added 2012/11/21 11:55 p.m.•4 views

CVE-2012-5526

CGI.pm module before 3.63 for Perl does not properly escape newlines in 1 Set-Cookie or 2 P3P headers, which might allow remote attackers to inject arbitrary headers into responses from applications that use CGI.pm...

6.5AI score

Exploits0References14

OSV•added 2003/08/11 12:0 a.m.•38 views

DSA-371 perl - cross-site scripting

Bulletin has no description...

4.3CVSS6AI score0.07248EPSS

Exploits0

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by