RSS   Podatności dla 'Module'   RSS

2013-08-19
 
CVE-2013-2145

CWE-20
 

 
The cpansign verify functionality in the Module::Signature module before 0.72 for Perl allows attackers to bypass the signature check and execute arbitrary code via a SIGNATURE file with a "special unknown cipher" that references an untrusted module in Digest/.

 


Copyright 2024, cxsecurity.com

 

Back to Top