CVE-2002-1323

Published: Sep 1, 2004

Modified: Aug 8, 2024

PUBLISHED

Description

Safe.pm 2.0.7 and earlier, when used in Perl 5.8.0 and earlier, may allow attackers to break out of safe compartments in (1) Safe::reval or (2) Safe::rdo using a redefined @_ variable, which is not reset between successive calls.

Vendor	Product	Versions
n/a	n/a	affected `n/a`

References

RHSA-2003:256

vendor-advisory

x_refsource_REDHAT

20021220 GLSA: perl

mailing-list

x_refsource_BUGTRAQ

http://use.perl.org/articles/02/10/06/1118222.shtml?tid=5

x_refsource_CONFIRM

RHSA-2003:257

vendor-advisory

x_refsource_REDHAT

20021219 TSLSA-2002-0087 - perl

mailing-list

x_refsource_BUGTRAQ

20021216 [OpenPKG-SA-2002.014] OpenPKG Security Advisory (perl)

mailing-list

x_refsource_BUGTRAQ

safe-pm-bypass-restrictions(10574)

vdb-entry

x_refsource_XF

3814

vdb-entry

x_refsource_OSVDB

oval:org.mitre.oval:def:1160

vdb-entry

signature

x_refsource_OVAL

2183

vdb-entry

x_refsource_OSVDB

DSA-208

vendor-advisory

x_refsource_DEBIAN

6111

vdb-entry

x_refsource_BID

20021105 Perl Safe.pm compartment reuse vuln

mailing-list

x_refsource_VULNWATCH

http://bugs6.perl.org/rt2/Ticket/Display.html?id=17744

x_refsource_CONFIRM

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Start Training

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

Scan Now

CVE-2002-1323

Description

Affected Products

References