CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

F5 Networks•added 2023/02/21 6:55 p.m.•57 views

K83058481: Perl vulnerabilities CVE-2011-1487, CVE-2011-2939, and CVE-2011-3597

Security Advisory Description CVE-2011-1487 The 1 lc, 2 lcfirst, 3 uc, and 4 ucfirst functions in Perl 5.10.x, 5.11.x, and 5.12.x through 5.12.3, and 5.13.x through 5.13.11, do not apply the taint attribute to the return value upon processing tainted input, which might allow context-dependent...

7.5CVSS9.4AI score0.13526EPSS

Exploits3

Tenable Nessus•added 2014/06/13 12:0 a.m.•32 views

openSUSE Security Update : perl (openSUSE-SU-2011:0479-1)

This update fixes a bug in perl that makes spamassassin crash and does not allow bypassing taint mode by using lc or uc anymore. - CVE-2010-4777: CVSS v2 Base Score: 5.0 AV:N/AC:L/Au:N/C:N/I:N/A:P - CVE-2011-1487: CVSS v2 Base Score: 2.6 AV:N/AC:H/Au:N/C:N/I:P/A:N: Permissions, Privileges, and...

Tenable Nessus•added 2014/06/13 12:0 a.m.•29 views

Exploits1References7

openSUSE Security Update : perl (openSUSE-SU-2011:0479-1)

Tenable Nessus•added 2012/08/01 12:0 a.m.•43 views

Exploits1References7

Scientific Linux Security Update : perl on SL6.x i386/x86_64

Perl is a high-level programming language commonly used for system administration utilities and web programming. The Perl CGI module provides resources for preparing and processing Common Gateway Interface CGI based HTTP requests and responses. It was found that the Perl CGI module used a...

5CVSS8AI score0.08712EPSS

Tenable Nessus•added 2011/12/13 12:0 a.m.•34 views

SuSE 10 Security Update : Perl (ZYPP Patch Number 7507)

This update fixes a bug in perl that allowed bypassing taint mode by using lc or uc. CVE-2011-1487: CVSS v2 Base Score: 2.6 AV:N/AC:H/Au:N/C:N/I:P/A:N: Permissions, Privileges, and Access Control. CWE-264 %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The text description of this plugin is ...

OpenVAS•added 2011/08/03 12:0 a.m.•29 views

Debian Security Advisory DSA 2265-1 (perl)

The remote host is missing an update to perl announced via advisory DSA 2265-1. OpenVAS Vulnerability Test $Id: deb22651.nasl 6613 2017-07-07 12:08:40Z cfischer $ Description: Auto-generated from advisory DSA 2265-1 perl Authors: Thomas Reinke Copyright: Copyright c 2011 E-Soft Inc...

5CVSS0.1AI score0.08712EPSS

Exploits1

Debian•added 2011/06/20 6:15 p.m.•38 views

[SECURITY] [DSA 2265-1] perl security update

------------------------------------------------------------------------- Debian Security Advisory DSA-2265-1 [email protected] http://www.debian.org/security/ Florian Weimer June 20, 2011 http://www.debian.org/security/faq -...

5CVSS5.9AI score0.08712EPSS

Exploits1

Oracle linux•added 2011/05/28 12:0 a.m.•44 views

perl security and bug fix update

5.10.1-119 - 692862 - lc launders tainted flag, CVE-2011-1487 - make SOURCE1 executable, because it missed +x in brew - Resolves: rhbz692862 5.10.1-118 - Correct perl-5.10.1-rt77352.patch - Related: rhbz640720 5.10.1-117 - 671352 CGI-3.51 security update - Resolves: rhbz671352 5.10.1-116 - requir...

5CVSS0.8AI score0.08712EPSS

Exploits1

OpenVAS•added 2011/05/23 12:0 a.m.•27 views

Mandriva Update for perl MDVSA-2011:091 (perl)

Check for the Version of perl OpenVAS Vulnerability Test Mandriva Update for perl MDVSA-2011:091 perl Authors: System Generated Check Copyright: Copyright c 2011 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under the ter...

5CVSS0.1AI score0.08712EPSS

Tenable Nessus•added 2011/05/13 12:0 a.m.•30 views

SuSE 10 Security Update : Perl (ZYPP Patch Number 7508)

Tenable Nessus•added 2011/05/13 12:0 a.m.•23 views

openSUSE Security Update : perl (openSUSE-SU-2011:0479-1)

OpenVAS•added 2011/05/10 12:0 a.m.•44 views

Exploits1References7

Ubuntu: Security Advisory (USN-1129-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2011 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

8.5CVSS9.6AI score0.08712EPSS

Exploits4References2

Ubuntu•added 2011/05/03 2:19 p.m.•81 views

USN-1129-1: Perl vulnerabilities

It was discovered that the Safe.pm Perl module incorrectly handled Safe::reval and Safe::rdo access restrictions. An attacker could use this flaw to bypass intended restrictions and possibly execute arbitrary code. CVE-2010-1168, CVE-2010-1447 It was discovered that the CGI.pm Perl module...

8.5CVSS8.4AI score0.08712EPSS

Exploits4

OpenVAS•added 2011/04/29 12:0 a.m.•23 views

Fedora Update for perl FEDORA-2011-4918

8.5CVSS6.8AI score0.08712EPSS

Exploits4References2

Tenable Nessus•added 2011/04/25 12:0 a.m.•25 views

Fedora 13 : perl-5.10.1-123.fc13 (2011-4918)

Security bug: lc launder tainted data http://rt.perl.org/rt3/Public/Bug/Display.html?id=87336 Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean and format it as much as possible...

5CVSS5.3AI score0.08712EPSS

OpenVAS•added 2011/04/19 12:0 a.m.•24 views

Fedora Update for perl FEDORA-2011-4610

5CVSS6.4AI score0.08712EPSS

Tenable Nessus•added 2011/04/18 12:0 a.m.•27 views

Fedora 15 : perl-5.12.3-156.fc15 (2011-4631)

Security bug: lc launder tainted data http://rt.perl.org/rt3/Public/Bug/Display.html?id=87336 Cwd.so should go the subpackage. Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean...

5CVSS5.3AI score0.08712EPSS

Tenable Nessus•added 2011/04/14 12:0 a.m.•28 views

Fedora 14 : perl-5.12.3-143.fc14 (2011-4610)

5CVSS5.3AI score0.08712EPSS