_is_safe in the File::Temp module for Perl does not properly handle symlinks.
References
Link | Resource |
---|---|
http://www.openwall.com/lists/oss-security/2011/11/04/2 | Mailing List Third Party Advisory |
http://www.openwall.com/lists/oss-security/2011/11/04/4 | Mailing List Third Party Advisory |
https://github.com/Perl-Toolchain-Gang/File-Temp/issues/14 | Exploit Third Party Advisory |
https://rt.cpan.org/Public/Bug/Display.html?id=69106 | Issue Tracking Patch Vendor Advisory |
https://seclists.org/oss-sec/2011/q4/238 | Mailing List Third Party Advisory |
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: redhat
Published: 2020-01-31T17:12:40
Updated: 2020-01-31T17:12:40
Reserved: 2011-10-18T00:00:00
Link: CVE-2011-4116
JSON object: View
NVD Information
Status : Analyzed
Published: 2020-01-31T18:15:11.343
Modified: 2020-02-05T22:10:26.290
Link: CVE-2011-4116
JSON object: View
Redhat Information
No data.
CWE