Nmap Security Scanner

Intro

Ref Guide

Install Guide

Download

Changelog

Book

Docs
Security Lists

Bugtraq

Basics

More
Security Tools

More
Site News
Site Search:
Exploit World
Advertising
About/Contact
Credits
Sponsors:

Vulnwatch: Perl Safe.pm compartment reuse vuln

Perl Safe.pm compartment reuse vuln

From: Rain Forest Puppy <rfp_at_vulnwatch.org>
Date: Wed, 6 Nov 2002 05:59:18 +0000 (GMT)

A bug was found in Perl's Safe.pm module:

http://use.perl.org/articles/02/10/06/1118222.shtml?tid=5

Basically, code in the sandbox can modify the execution/operation mask via
@_; if the compartment was ever reused, the second time around it might
use the modified execution mask.

Perl <= 5.8.0 are vuln.

- rfp
Received on Nov 06 2002

This message: [ Message body ]
Next message: David Endler: "iDEFENSE Security Advisory 11.06.02: Non-Explicit Path Vulnerability in LuxMan"
Previous message: NGSSoftware Insight Security Research: "Oracle iSQL*Plus buffer overflow vulnerability (#NISR04112002)"

Contemporary messages sorted: [ by date ] [ by thread ] [ by subject ] [ by author ] [ by messages with attachments ]