Lucene search
K

28 matches found

Tenable Nessus
Tenable Nessus
added 2025/03/04 12:0 a.m.6 views

Linux Distros Unpatched Vulnerability : CVE-2016-6185

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - The XSLoader::load method in XSLoader in Perl does not properly locate .so files when called in a string eval, which might allow local users to execute arbitrar...

7.8CVSS8AI score0.00787EPSS
Exploits1References2
Tenable Nessus
Tenable Nessus
added 2024/06/03 12:0 a.m.22 views

RHEL 7 : perl (Unpatched Vulnerability)

The remote Redhat Enterprise Linux 7 host has one or more packages installed that are affected by multiple vulnerabilities that have been acknowledged by the vendor but will not be patched. - perl: segmentation fault in Sregmatch on negative backreference CVE-2013-7422 - perl: XSLoader loads...

7.8CVSS8AI score0.09007EPSS
Exploits4References6
OpenVAS
OpenVAS
added 2023/03/08 12:0 a.m.21 views

Debian: Security Advisory (DLA-565-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.8CVSS8AI score0.00787EPSS
Exploits1References3
OpenVAS
OpenVAS
added 2021/06/09 12:0 a.m.20 views

SUSE: Security Advisory (SUSE-SU-2016:2246-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.8CVSS8.1AI score0.09007EPSS
Exploits1References7
OpenVAS
OpenVAS
added 2021/04/19 12:0 a.m.26 views

SUSE: Security Advisory (SUSE-SU-2016:2263-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.8CVSS8.1AI score0.09007EPSS
Exploits1References9
Tenable Nessus
Tenable Nessus
added 2020/05/01 12:0 a.m.52 views

EulerOS Virtualization for ARM 64 3.0.2.0 : perl (EulerOS-SA-2020-1527)

According to the versions of the perl packages installed, the EulerOS Virtualization for ARM 64 installation on the remote host is affected by the following vulnerabilities : - The XSLoader::load method in XSLoader in Perl does not properly locate .so files when called in a string eval, which mig...

7.8CVSS7.8AI score0.00787EPSS
Exploits4References3
Tenable Nessus
Tenable Nessus
added 2020/04/16 12:0 a.m.32 views

EulerOS Virtualization 3.0.2.2 : perl (EulerOS-SA-2020-1476)

According to the versions of the perl packages installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerabilities : - Integer underflow in regcomp.c in Perl before 5.20, as used in Apple OS X before 10.10.5 and other products, allows context-depende...

7.8CVSS7.7AI score0.03045EPSS
Exploits1References4
Tenable Nessus
Tenable Nessus
added 2020/02/24 12:0 a.m.61 views

EulerOS 2.0 SP5 : perl (EulerOS-SA-2020-1122)

According to the version of the perl packages installed, the EulerOS installation on the remote host is affected by the following vulnerability : - The XSLoader::load method in XSLoader in Perl does not properly locate .so files when called in a string eval, which might allow local users to execu...

7.8CVSS7.9AI score0.00787EPSS
Exploits1References2
OpenVAS
OpenVAS
added 2020/02/24 12:0 a.m.23 views

Huawei EulerOS: Security Advisory for perl (EulerOS-SA-2020-1122)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.8CVSS7.8AI score0.00787EPSS
Exploits1References2
Ubuntu
Ubuntu
added 2018/04/17 9:0 p.m.69 views

USN-3625-2: Perl vulnerabilities

USN-3625-1 fixed a vulnerability in Perl. This update provides the corresponding update for Ubuntu 12.04 ESM. Original advisory details: It was discovered that Perl incorrectly handled certain regular expressions. An attacker could possibly use this issue to cause Perl to hang, resulting in a...

9.8CVSS7.5AI score0.10866EPSS
Exploits1
Ubuntu
Ubuntu
added 2018/04/16 12:47 p.m.78 views

USN-3625-1: Perl vulnerabilities

It was discovered that Perl incorrectly handled certain regular expressions. An attacker could possibly use this issue to cause Perl to hang, resulting in a denial of service. This issue only affected Ubuntu 14.04 LTS. CVE-2015-8853 It was discovered that Perl incorrectly loaded libraries from th...

9.8CVSS7.4AI score0.10866EPSS
Exploits1
OpenVAS
OpenVAS
added 2016/11/24 12:0 a.m.36 views

Perl 'XSLoader Method' Code Execution Vulnerability - Windows

Perl is prone to a code execution vulnerability. SPDX-FileCopyrightText: 2016 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:perl:perl"; ifdescription...

7.8CVSS7.9AI score0.00787EPSS
Exploits1References4
Tenable Nessus
Tenable Nessus
added 2016/09/19 12:0 a.m.34 views

openSUSE Security Update : perl (openSUSE-2016-1086)

This update for Perl fixes the following issues : - CVE-2016-6185: Xsloader looking at a 'eval' directory. bsc988311 - CVE-2016-1238: Searching current directory for optional modules. bsc987887 - CVE-2015-8853: Regular expression engine hanging on bad utf8. bsc - CVE-2016-2381: Environment dup...

7.8CVSS6.6AI score0.09007EPSS
Exploits1References10
Mageia
Mageia
added 2016/09/16 9:27 a.m.34 views

Updated perl-XSLoader packages fix security vulnerability

An arbitrary code execution can be achieved if loading code from untrusted current working directory despite the '.' is removed from @INC. Vulnerability is in XSLoader that uses caller information to locate .so file to load. If malicious attacker creates directory named eval 1 with malicious bina...

7.8CVSS2.8AI score0.00787EPSS
Exploits1References2
Tenable Nessus
Tenable Nessus
added 2016/09/12 12:0 a.m.37 views

SUSE SLED12 / SLES12 Security Update : perl (SUSE-SU-2016:2263-1)

This update for Perl fixes the following issues : - CVE-2016-6185: Xsloader looking at a 'eval' directory. bsc988311 - CVE-2016-1238: Searching current directory for optional modules. bsc987887 - CVE-2015-8853: Regular expression engine hanging on bad utf8. bsc - CVE-2016-2381: Environment dup...

7.8CVSS6.8AI score0.09007EPSS
Exploits1References15
Tenable Nessus
Tenable Nessus
added 2016/09/08 12:0 a.m.25 views

SUSE SLES11 Security Update : perl (SUSE-SU-2016:2246-1)

This update for perl fixes the following issues : - CVE-2016-6185: xsloader looking at a 'eval' directory bsc988311 - CVE-2016-1238: searching current directory for optional modules bsc987887 - CVE-2015-8853: regex engine hanging on bad utf8 bnc976584 - CVE-2016-2381: environment dup handling bug...

7.8CVSS6.8AI score0.09007EPSS
Exploits1References13
OSV
OSV
added 2016/08/02 2:59 p.m.7 views

CVE-2016-6185

The XSLoader::load method in XSLoader in Perl does not properly locate .so files when called in a string eval, which might allow local users to execute arbitrary code via a Trojan horse library under the current working directory...

7.8CVSS7.8AI score
Exploits0References14
CVE
CVE
added 2016/08/02 2:0 p.m.128 views

CVE-2016-6185

The CVE-2016-6185 issue involves Perl’s XSLoader::load potentially locating and loading a shared library from an incorrect location when called from a string eval, enabling arbitrary code execution by a local attacker via a Trojan horse library in the current working directory. Public reports (De...

7.8CVSS7.7AI score0.00787EPSS
Exploits1References14Affected Software1
OpenVAS
OpenVAS
added 2016/08/02 12:0 a.m.32 views

Debian: Security Advisory (DSA-3628-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2016 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.8CVSS8.1AI score0.00787EPSS
Exploits1References3
OpenVAS
OpenVAS
added 2016/08/02 12:0 a.m.27 views

Fedora Update for perl FEDORA-2016-742bde2be7

The remote host is missing an update for the SPDX-FileCopyrightText: 2016 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.8CVSS7.8AI score0.00787EPSS
Exploits1References2
Rows per page
Query Builder