Vulnerabilities

CVE-2013-2145

by Fred · 19/08/2013

The cpansign verify functionality in the Module::Signature module before 0.72 for Perl allows attackers to bypass the signature check and execute arbitrary code via a SIGNATURE file with a "special unknown cipher" that references an untrusted module in Digest/.

Date published : 2013-08-19

http://www.securityfocus.com/bid/60352

https://github.com/audreyt/module-signature/commit/575f7bd6ba4cc7c92f841e8758f88a131674ebf2

Similar

Tags: Cybersecurity Alert