Vulnerabilities > CVE-2011-4115 - Unspecified vulnerability in Cpan Parallel::Forkmanager
Attack vector
NETWORK Attack complexity
LOW Privileges required
NONE Confidentiality impact
NONE Integrity impact
HIGH Availability impact
NONE Summary
Parallel::ForkManager module before 1.0.0 for Perl does not properly handle temporary files.
Vulnerable Configurations
Part | Description | Count |
---|---|---|
Application | 13 |
Nessus
NASL family | Gentoo Local Security Checks |
NASL id | GENTOO_GLSA-201310-11.NASL |
description | The remote host is affected by the vulnerability described in GLSA-201310-11 (Perl Parallel-ForkManager Module: Insecure temporary file usage) The Perl Parallel-ForkManager module does not handle temporary files securely. Impact : A local attacker could perform symlink attacks to overwrite arbitrary files with the privileges of the user running the application. Workaround : There is no known workaround at this time. |
last seen | 2020-06-01 |
modified | 2020-06-02 |
plugin id | 70487 |
published | 2013-10-18 |
reporter | This script is Copyright (C) 2013-2018 Tenable Network Security, Inc. |
source | https://www.tenable.com/plugins/nessus/70487 |
title | GLSA-201310-11 : Perl Parallel-ForkManager Module: Insecure temporary file usage |
References
- http://www.openwall.com/lists/oss-security/2011/11/04/2
- http://www.openwall.com/lists/oss-security/2011/11/04/4
- https://rt.cpan.org/Public/Bug/Display.html?id=68298
- http://www.openwall.com/lists/oss-security/2011/11/04/2
- https://rt.cpan.org/Public/Bug/Display.html?id=68298
- http://www.openwall.com/lists/oss-security/2011/11/04/4