Showing 1 - 3 of 3

CVE-2016-1238

Status Candidate

Overview

(1) cpan/Archive-Tar/bin/ptar, (2) cpan/Archive-Tar/bin/ptardiff, (3) cpan/Archive-Tar/bin/ptargrep, (4) cpan/CPAN/scripts/cpan, (5) cpan/Digest-SHA/shasum, (6) cpan/Encode/bin/enc2xs, (7) cpan/Encode/bin/encguess, (8) cpan/Encode/bin/piconv, (9) cpan/Encode/bin/ucmlint, (10) cpan/Encode/bin/unidump, (11) cpan/ExtUtils-MakeMaker/bin/instmodsh, (12) cpan/IO-Compress/bin/zipdetails, (13) cpan/JSON-PP/bin/json_pp, (14) cpan/Test-Harness/bin/prove, (15) dist/ExtUtils-ParseXS/lib/ExtUtils/xsubpp, (16) dist/Module-CoreList/corelist, (17) ext/Pod-Html/bin/pod2html, (18) utils/c2ph.PL, (19) utils/h2ph.PL, (20) utils/h2xs.PL, (21) utils/libnetcfg.PL, (22) utils/perlbug.PL, (23) utils/perldoc.PL, (24) utils/perlivp.PL, and (25) utils/splain.PL in Perl 5.x before 5.22.3-RC2 and 5.24 before 5.24.1-RC2 do not properly remove . (period) characters from the end of the includes directory array, which might allow local users to gain privileges via a Trojan horse module under the current working directory.

Related Files

Gentoo Linux Security Advisory 201701-75: Posted Jan 30, 2017; Authored by Gentoo | Site security.gentoo.org; Gentoo Linux Security Advisory 201701-75 - Multiple vulnerabilities have been found in Perl, the worst of which could allow remote attackers to execute arbitrary code. Versions less than 5.22.3_rc4 are affected.; tags | advisory, remote, arbitrary, perl, vulnerability; systems | linux, gentoo; advisories | CVE-2015-8607, CVE-2015-8853, CVE-2016-1238, CVE-2016-2381, CVE-2016-6185; MD5 | aadc81a6433dc3251362cd7f85b56bd8; Download | Favorite | Comments (0)

HP Security Bulletin HPSBNS03635 1: Posted Aug 22, 2016; Authored by HP | Site hp.com; HP Security Bulletin HPSBNS03635 1 - Multiple potential remote and local vulnerabilities impacting Perl and PHP have been addressed by HPE NonStop Servers OSS Script Languages. The vulnerabilities include Perl's opportunistic loading of optional modules which might allow local users to gain elevation of privilege via a Trojan horse library under the current working directory. Revision 1 of this advisory.; tags | advisory, remote, local, trojan, perl, php, vulnerability; advisories | CVE-2013-7456, CVE-2014-4330, CVE-2015-8383, CVE-2015-8386, CVE-2015-8387, CVE-2015-8389, CVE-2015-8390, CVE-2015-8391, CVE-2015-8393, CVE-2015-8394, CVE-2015-8607, CVE-2015-8853, CVE-2015-8865, CVE-2015-8874, CVE-2016-1238, CVE-2016-1903, CVE-2016-2381, CVE-2016-2554, CVE-2016-3074, CVE-2016-4070, CVE-2016-4071, CVE-2016-4072, CVE-2016-4073, CVE-2016-4342, CVE-2016-4343, CVE-2016-4537, CVE-2016-4538, CVE-2016-4539; MD5 | 208143266211c16a2e73608c2b984f2c; Download | Favorite | Comments (0)

Debian Security Advisory 3628-1: Posted Jul 25, 2016; Authored by Debian | Site debian.org; Debian Linux Security Advisory 3628-1 - Multiple vulnerabilities were discovered in the implementation of the Perl programming language.; tags | advisory, perl, vulnerability; systems | linux, debian; advisories | CVE-2016-1238, CVE-2016-6185; MD5 | 954df4e8b02c51487e71cb3bba066346; Download | Favorite | Comments (0)

Page 1 of 1 Back 1 Next

Want To Donate?

Bitcoin: 18PFeCVLwpmaBuQqd5xAYZ8bZdvbyEWMmU

Top Authors In Last 30 Days

Red Hat 101 files
Ubuntu 35 files
Debian 29 files
Gentoo 13 files
Google Security Research 11 files
Slackware Security Team 10 files
Borna Nematzadeh 9 files
hyp3rlinx 8 files
Francisco Javier Santiago Vazquez 7 files
8bitsec 6 files

File Archives

Systems

AIX (409)
Apple (1,546)
BSD (335)
Cisco (1,810)
Debian (5,511)
Fedora (1,681)
FreeBSD (1,195)
Gentoo (3,567)
HPUX (865)
iOS (173)
iPhone (103)
IRIX (219)
Juniper (66)
Linux (33,389)
Mac OS X (652)
Mandriva (3,105)
NetBSD (255)
OpenBSD (456)
RedHat (6,487)
Slackware (824)
Solaris (1,569)
SUSE (1,444)
Ubuntu (5,620)
UNIX (8,266)
UnixWare (172)
Windows (5,331)
Other