11 matches found
EUVD-2008-2820
Malware in sbrugna...
CVE-2011-0761
Perl 5.10.x allows context-dependent attackers to cause a denial of service NULL pointer dereference and application crash by leveraging an ability to inject arguments into a 1 getpeername, 2 readdir, 3 closedir, 4 getsockname, 5 rewinddir, 6 tell, or 7 telldir function call...
CVE-2011-0761
Perl 5.10.x allows context-dependent attackers to cause a denial of service NULL pointer dereference and application crash by leveraging an ability to inject arguments into a 1 getpeername, 2 readdir, 3 closedir, 4 getsockname, 5 rewinddir, 6 tell, or 7 telldir function call...
CVE-2011-0761
CVE-2011-0761 affects Perl 5.10.x, where an attacker could cause a denial-of-service (NULL pointer dereference and crash) by injecting arguments into several I/O/dir-related calls (getpeername, readdir, closedir, getsockname, rewinddir, tell, telldir). The OpenVAS/Nessus/Gentoo entries confirm Pe...
Perl 5.10 - Multiple Null Pointer Dereference Denial of Service Vulnerabilities
Perl 5.10 - Multiple Null Pointer Dereference Denial of Service Vulnerabilities source: https://www.securityfocus.com/bid/47766/info Perl is prone to multiple denial-of-service vulnerabilities caused by a NULL-pointer dereference. An attacker can exploit these issues to cause an affected...
CVE-2011-1487
The 1 lc, 2 lcfirst, 3 uc, and 4 ucfirst functions in Perl 5.10.x, 5.11.x, and 5.12.x through 5.12.3, and 5.13.x through 5.13.11, do not apply the taint attribute to the return value upon processing tainted input, which might allow context-dependent attackers to bypass the taint protection...
Design/Logic Flaw
The 1 lc, 2 lcfirst, 3 uc, and 4 ucfirst functions in Perl 5.10.x, 5.11.x, and 5.12.x through 5.12.3, and 5.13.x through 5.13.11, do not apply the taint attribute to the return value upon processing tainted input, which might allow context-dependent attackers to bypass the taint protection...
CVE-2011-1487
The 1 lc, 2 lcfirst, 3 uc, and 4 ucfirst functions in Perl 5.10.x, 5.11.x, and 5.12.x through 5.12.3, and 5.13.x through 5.13.11, do not apply the taint attribute to the return value upon processing tainted input, which might allow context-dependent attackers to bypass the taint protection...
Design/Logic Flaw
The rmtree function in lib/File/Path.pm in Perl 5.10 does not properly check permissions before performing a chmod, which allows local users to modify the permissions of arbitrary files via a symlink attack, a different vulnerability than CVE-2005-0448 and CVE-2004-0452...
CVE-2008-2827
CVE-2008-2827 involves the rmtree function in File::Path.pm of Perl 5.10. The description indicates a permissions check flaw before performing chmod, enabling local users to modify the permissions of arbitrary files via a symlink attack. This is a race-condition/permissions bug in the rmtree path...
CVE-2008-2827
The rmtree function in lib/File/Path.pm in Perl 5.10 does not properly check permissions before performing a chmod, which allows local users to modify the permissions of arbitrary files via a symlink attack, a different vulnerability than CVE-2005-0448 and CVE-2004-0452...