4.6

CVE-2002-1323

Safe.pm 2.0.7 and earlier, when used in Perl 5.8.0 and earlier, may allow attackers to break out of safe compartments in (1) Safe::reval or (2) Safe::rdo using a redefined @_ variable, which is not reset between successive calls.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
Safe.PmSafe.Pm Version2.0_6
Safe.PmSafe.Pm Version2.0_7
SunLinux Version5.0.7
SgiIrix Version6.5
SgiIrix Version6.5.1
SgiIrix Version6.5.2
SgiIrix Version6.5.3
SgiIrix Version6.5.4
SgiIrix Version6.5.5
SgiIrix Version6.5.6
SgiIrix Version6.5.7
SgiIrix Version6.5.8
SgiIrix Version6.5.9
SgiIrix Version6.5.10
SgiIrix Version6.5.11
SgiIrix Version6.5.12
SgiIrix Version6.5.13
SgiIrix Version6.5.14
SgiIrix Version6.5.15
SgiIrix Version6.5.16
SgiIrix Version6.5.17
SgiIrix Version6.5.17f
SgiIrix Version6.5.17m
SgiIrix Version6.5.18
SgiIrix Version6.5.18f
SgiIrix Version6.5.18m
SgiIrix Version6.5.19
SgiIrix Version6.5.19f
SgiIrix Version6.5.19m
SgiIrix Version6.5.20f
SgiIrix Version6.5.20m
SgiIrix Version6.5.21f
SgiIrix Version6.5.21m
SgiIrix Version6.5.22
RedhatEnterprise Linux Version2.1 Editionadvanced_server
RedhatEnterprise Linux Version2.1 Editionadvanced_server_ia64
RedhatEnterprise Linux Version2.1 Editionenterprise_server
RedhatEnterprise Linux Version2.1 Editionenterprise_server_ia64
RedhatEnterprise Linux Version2.1 Editionworkstation
RedhatEnterprise Linux Version2.1 Editionworkstation_ia64
ScoOpen Unix Version8.0
ScoUnixware Version7.1.2
ScoUnixware Version7.1.3
SunSolaris Version8.0 Editionx86
SunSolaris Version9.0 Editionsparc
SunSolaris Version9.0 Editionx86
SunSunos Version5.8
Zu dieser CVE wurde keine Warnung gefunden.
EPSS Metriken
Typ Quelle Score Percentile
EPSS FIRST.org 0.46% 0.365
CVSS Metriken
Quelle Base Score Exploit Score Impact Score Vector String
nvd@nist.gov 4.6 3.9 6.4
AV:L/AC:L/Au:N/C:P/I:P/A:P
Es wurden noch keine Informationen zu CWE veröffentlicht.
ftp://ftp.caldera.com/pub/security/OpenLinux/CSSA-2004-007.0.txt
ftp://ftp.sco.com/pub/updates/UnixWare/SCOSA-2004.1/SCOSA-2004.1.txt
ftp://patches.sgi.com/support/free/security/advisories/20030606-01-A
http://archives.neohapsis.com/archives/vulnwatch/2002-q4/0061.html
http://bugs6.perl.org/rt2/Ticket/Display.html?id=17744
http://marc.info/?l=bugtraq&m=104005919814869&w=2
http://marc.info/?l=bugtraq&m=104033126305252&w=2
http://marc.info/?l=bugtraq&m=104040175522502&w=2
http://use.perl.org/articles/02/10/06/1118222.shtml?tid=5
Patch
http://www.debian.org/security/2002/dsa-208
Patch
Vendor Advisory
http://www.iss.net/security_center/static/10574.php
Vendor Advisory
http://www.osvdb.org/2183
http://www.osvdb.org/3814
http://www.redhat.com/support/errata/RHSA-2003-256.html
http://www.redhat.com/support/errata/RHSA-2003-257.html
http://www.securityfocus.com/bid/6111
Patch
Vendor Advisory
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A1160