Back to search
CVE-2012-6142
Published: Jun 4, 2014
Modified: Aug 6, 2024
PUBLISHED
Description
Session::Cookie in the HTML::EP module 0.2011 for Perl does not properly use the Storable::thaw function, which allows remote attackers to execute arbitrary code via a crafted request, which is not properly handled when it is deserialized.
| Vendor | Product | Versions |
|---|---|---|
n/a | n/a | affected n/a |
References
htmlep-cve20126142-sec-bypass(84199)
vdb-entry
x_refsource_XF
[oss-security] 20130514 Re: CVE Request: Storable::thaw called on cookie data in multiple CPAN modules
mailing-list
x_refsource_MLIST
59833
vdb-entry
x_refsource_BID
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now