Lucene search
K

37 matches found

Prion
Prion
added 2016/08/02 2:59 p.m.14 views

Directory traversal

The XSLoader::load method in XSLoader in Perl does not properly locate .so files when called in a string eval, which might allow local users to execute arbitrary code via a Trojan horse library under the current working directory...

4.6CVSS7.4AI score0.00787EPSS
Exploits1References14Affected Software5
Cvelist
Cvelist
added 2016/08/02 2:0 p.m.31 views

CVE-2016-6185

The XSLoader::load method in XSLoader in Perl does not properly locate .so files when called in a string eval, which might allow local users to execute arbitrary code via a Trojan horse library under the current working directory...

7.8AI score0.00787EPSS
Exploits1References14
CVE
CVE
added 2016/08/02 2:0 p.m.129 views

CVE-2016-6185

The CVE-2016-6185 issue involves Perl’s XSLoader::load potentially locating and loading a shared library from an incorrect location when called from a string eval, enabling arbitrary code execution by a local attacker via a Trojan horse library in the current working directory. Public reports (De...

7.8CVSS7.7AI score0.00787EPSS
Exploits1References14Affected Software1
Debian CVE
Debian CVE
added 2016/08/02 2:0 p.m.58 views

CVE-2016-6185

The XSLoader::load method in XSLoader in Perl does not properly locate .so files when called in a string eval, which might allow local users to execute arbitrary code via a Trojan horse library under the current working directory...

7.8CVSS7.7AI score0.00787EPSS
Exploits1
OSV
OSV
added 2016/08/02 12:0 a.m.8 views

UBUNTU-CVE-2016-6185

The XSLoader::load method in XSLoader in Perl does not properly locate .so files when called in a string eval, which might allow local users to execute arbitrary code via a Trojan horse library under the current working directory...

7.8CVSS7.5AI score0.00787EPSS
Exploits1References4
UbuntuCve
UbuntuCve
added 2016/08/02 12:0 a.m.20 views

CVE-2016-6185

The XSLoader::load method in XSLoader in Perl does not properly locate .so files when called in a string eval, which might allow local users to execute arbitrary code via a Trojan horse library under the current working directory...

7.8CVSS7.3AI score0.00787EPSS
Exploits1References3
OpenVAS
OpenVAS
added 2016/08/02 12:0 a.m.32 views

Debian: Security Advisory (DSA-3628-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2016 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.8CVSS8.1AI score0.00787EPSS
Exploits1References3
Tenable Nessus
Tenable Nessus
added 2016/07/29 12:0 a.m.39 views

Debian DLA-565-1 : perl security update

Multiple vulnerabilities were discovered in the implementation of the Perl programming language. The Common Vulnerabilities and Exposures project identifies the following problems : CVE-2016-1238 John Lightsey and Todd Rinaldo reported that the opportunistic loading of optional modules can make...

7.8CVSS6.9AI score0.00787EPSS
Exploits1References4
Debian
Debian
added 2016/07/28 4:3 p.m.74 views

[SECURITY] [DLA 565-1] perl security update

Package : perl Version : 5.14.2-21+deb7u4 CVE ID : CVE-2016-1238 CVE-2016-6185 Debian Bug : 829578 Multiple vulnerabilities were discovered in the implementation of the Perl programming language. The Common Vulnerabilities and Exposures project identifies the following problems: CVE-2016-1238 Joh...

7.8CVSS8.8AI score0.00787EPSS
Exploits1
OSV
OSV
added 2016/07/28 12:0 a.m.39 views

DLA-565-1 perl - security update

Bulletin has no description...

7.8CVSS7.3AI score0.00787EPSS
Exploits1
Debian
Debian
added 2016/07/25 2:18 p.m.34 views

[SECURITY] [DSA 3628-1] perl security update

------------------------------------------------------------------------- Debian Security Advisory DSA-3628-1 [email protected] https://www.debian.org/security/ Salvatore Bonaccorso July 25, 2016 https://www.debian.org/security/faq -...

7.2CVSS0.7AI score0.00787EPSS
Exploits1
Debian
Debian
added 2016/07/25 2:18 p.m.48 views

[SECURITY] [DSA 3628-1] perl security update

------------------------------------------------------------------------- Debian Security Advisory DSA-3628-1 [email protected] https://www.debian.org/security/ Salvatore Bonaccorso July 25, 2016 https://www.debian.org/security/faq -...

7.8CVSS8.6AI score0.00787EPSS
Exploits1
Positive Technologies
Positive Technologies
added 2016/07/25 12:0 a.m.5 views

PT-2016-6790 · Perl +2 · Xloader +2

Name of the Vulnerable Software and Affected Versions: Perl affected versions not specified Description: The XSLoader::load method in XSLoader does not properly locate .so files when called in a string eval. This might allow local users to execute arbitrary code via a Trojan horse library under t...

9.8CVSS8.1AI score0.10866EPSS
Exploits1References65
OSV
OSV
added 2016/07/25 12:0 a.m.34 views

DSA-3628-1 perl - security update

Bulletin has no description...

7.8CVSS7.3AI score0.00787EPSS
Exploits1
CNVD
CNVD
added 2016/07/12 12:0 a.m.5 views

Perl Local Elevation of Privilege Vulnerability

Perl is a free and powerful cross-platform programming language developed by American programmer Larry Wall. A security vulnerability exists in Perl. A local attacker can exploit this vulnerability by supplying specially crafted data to the XSLoader component to gain privileges on the target syst...

7.8CVSS9.7AI score0.00787EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2016/07/11 8:48 a.m.29 views

CVE-2016-6185

The XSLoader::load method in XSLoader in Perl does not properly locate .so files when called in a string eval, which might allow local users to execute arbitrary code via a Trojan horse library under the current working directory...

7.8CVSS4.5AI score0.00787EPSS
Exploits1References1
FreeBSD
FreeBSD
added 2016/06/30 12:0 a.m.29 views

p5-XSLoader -- local arbitrary code execution

Jakub Wilk reports: XSLoader tries to load code from a subdirectory in the cwd when called inside a string eval...

7.8CVSS2.1AI score0.00787EPSS
Exploits1References1
Rows per page
Query Builder