CVE-2015-3407

Опубликовано: 05 апр. 2015

Источник: redhat

CVSS2: 5.1

Описание

Module::Signature before 0.74 allows remote attackers to bypass signature verification for files via a signature file that does not list the files.

Платформа	Пакет	Состояние	Рекомендация	Релиз
Red Hat Enterprise Linux 7	perl-Module-Signature	Will not fix

Показывать по

Статус:

Moderate

Дефект:

CWE-20

https://bugzilla.redhat.com/show_bug.cgi?id=1209915perl-Module-Signature: arbitrary code execution during test phase

5.1 Medium

CVSS2

CVE-2015-3407

ubuntu

больше 10 лет назад

Module::Signature before 0.74 allows remote attackers to bypass signature verification for files via a signature file that does not list the files.

CVE-2015-3407

nvd

больше 10 лет назад

Module::Signature before 0.74 allows remote attackers to bypass signature verification for files via a signature file that does not list the files.

CVE-2015-3407

debian

больше 10 лет назад

Module::Signature before 0.74 allows remote attackers to bypass signat ...

GHSA-2qpg-g63h-ghqr

github

больше 3 лет назад

Module::Signature before 0.74 allows remote attackers to bypass signature verification for files via a signature file that does not list the files.

5.1 Medium

CVSS2