Описание
The XSLoader::load method in XSLoader in Perl does not properly locate .so files when called in a string eval, which might allow local users to execute arbitrary code via a Trojan horse library under the current working directory.
Затронутые пакеты
| Платформа | Пакет | Состояние | Рекомендация | Релиз |
|---|---|---|---|---|
| Red Hat Enterprise Linux 5 | perl | Will not fix | ||
| Red Hat Enterprise Linux 6 | perl | Will not fix | ||
| Red Hat Enterprise Linux 7 | perl | Will not fix | ||
| Red Hat Software Collections | rh-perl520-perl | Will not fix | ||
| Red Hat Software Collections | rh-perl524-perl | Will not fix |
Показывать по
Дополнительная информация
Статус:
EPSS
7.3 High
CVSS3
6.8 Medium
CVSS2
Связанные уязвимости
The XSLoader::load method in XSLoader in Perl does not properly locate .so files when called in a string eval, which might allow local users to execute arbitrary code via a Trojan horse library under the current working directory.
The XSLoader::load method in XSLoader in Perl does not properly locate .so files when called in a string eval, which might allow local users to execute arbitrary code via a Trojan horse library under the current working directory.
The XSLoader::load method in XSLoader in Perl does not properly locate ...
The XSLoader::load method in XSLoader in Perl does not properly locate .so files when called in a string eval, which might allow local users to execute arbitrary code via a Trojan horse library under the current working directory.
EPSS
7.3 High
CVSS3
6.8 Medium
CVSS2