CVE-2014-1875

Published: Oct 6, 2014

Modified: Aug 6, 2024

PUBLISHED

Description

The Capture::Tiny module before 0.24 for Perl allows local users to write to arbitrary files via a symlink attack on a temporary file.

Vendor	Product	Versions
n/a	n/a	affected `n/a`

References

65475

vdb-entry

x_refsource_BID

capturetiny-perl-symlink(91464)

vdb-entry

x_refsource_XF

56823

third-party-advisory

x_refsource_SECUNIA

FEDORA-2014-2261

vendor-advisory

x_refsource_FEDORA

102963

vdb-entry

x_refsource_OSVDB

https://bugzilla.redhat.com/show_bug.cgi?id=1062424

x_refsource_CONFIRM

https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=737835

x_refsource_CONFIRM

FEDORA-2014-2321

vendor-advisory

x_refsource_FEDORA

[oss-security] 20140206 CVE Request: Capture::Tiny: insecure use of /tmp

mailing-list

x_refsource_MLIST

http://cpansearch.perl.org/src/DAGOLDEN/Capture-Tiny-0.24/Changes

x_refsource_CONFIRM

[oss-security] 20140206 Re: CVE Request: Capture::Tiny: insecure use of /tmp

mailing-list

x_refsource_MLIST

https://github.com/dagolden/Capture-Tiny/commit/635c9eabd52ab8042b0c841823bd6e692de87924

x_refsource_CONFIRM

https://github.com/dagolden/Capture-Tiny/issues/16

x_refsource_CONFIRM

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Start Training

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

Scan Now

CVE-2014-1875

Description

Affected Products

References