Summary
The host is installed with Strawberry Perl and is prone to multiple code injection vulnerabilities.
Impact
Successful exploitation will allow attackers to execute arbitrary code on the system.
Impact Level: System/Application
Solution
Upgrade to Strawberry Perl version 5.17.7 or later, For updates refer to http://strawberryperl.com
Insight
An improper validation of input by the '_compile()' function which can be exploited to inject and execute arbitrary Perl code on the system.
Affected
Strawberry Perl version prior to 5.17.7 on Windows
References
Severity
Classification
-
CVE CVE-2012-6329 -
CVSS Base Score: 7.5
AV:N/AC:L/Au:N/C:P/I:P/A:P
Related Vulnerabilities
- Adobe AIR Code Execution and DoS Vulnerabilities Nov13 (Windows)
- 7T Interactive Graphical SCADA System Multiple Security Vulnerabilities
- Adobe Flash Player Code Execution and DoS Vulnerabilities (Linux)
- Adobe Air Multiple Vulnerabilities June-2012 (Mac OS X)
- Adobe AIR Multiple Vulnerabilities -01 Feb13 (Windows)