CPANSA-ActivePerl-2012-5377: ActivePerl vulnerability

Publisher giterlizzi Document category csaf_security_advisory
Initial release date 2012-10-11T00:00:00 Engine CSAF Perl Toolkit 0.25
Current release date 2012-10-11T00:00:00 Build Date
Current version 1 Status final
CVSS v3.1 Base Score Severity
Original language Language en
Also referred to

Vulnerability Description

Untrusted search path vulnerability in the installation functionality in ActivePerl 5.16.1.1601, when installed in the top-level C:\ directory, allows local users to gain privileges via a Trojan horse DLL in the C:\Perl\Site\bin directory, which is added to the PATH system environment variable, as demonstrated by a Trojan horse wlbsctrl.dll file used by the "IKE and AuthIP IPsec Keying Modules" system service in Windows Vista SP1, Windows Server 2008 SP2, Windows 7 SP1, and Windows 8 Release Preview.

Vulnerabilities

CVE-2012-5377

Vulnerability Description

Untrusted search path vulnerability in the installation functionality in ActivePerl 5.16.1.1601, when installed in the top-level C:\ directory, allows local users to gain privileges via a Trojan horse DLL in the C:\Perl\Site\bin directory, which is added to the PATH system environment variable, as demonstrated by a Trojan horse wlbsctrl.dll file used by the "IKE and AuthIP IPsec Keying Modules" system service in Windows Vista SP1, Windows Server 2008 SP2, Windows 7 SP1, and Windows 8 Release Preview.

Product status

Known affected
Product Score
ActivePerl equal 5.16.1.1601
CVSS Version CVSS Vector CVSS Base Score CVSS Base Severity
2.0 AV:L/AC:H/Au:S/C:C/I:C/A:C 6.0 Medium

giterlizzi

Namespace: https://github.com/giterlizzi/

gdt@cpan.org

References

Revision history

Version Date of the revision Summary of the revision
1 Thu Oct 11 00:00:00 2012 First release

Sharing rules

TLP:WHITE
For the TLP version see: https://www.first.org/tlp/