Vulnerabilities
Vulnerable Software

Vulnerability Details CVE-2016-6185

The XSLoader::load method in XSLoader in Perl does not properly locate .so files when called in a string eval, which might allow local users to execute arbitrary code via a Trojan horse library under the current working directory.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.005
EPSS Ranking 62.7%
CVSS Severity
CVSS v3 Score 7.8
CVSS v2 Score 4.6
References
Products affected by CVE-2016-6185
  • Perl » Perl » Version: 5.23.0
    cpe:2.3:a:perl:perl:5.23.0
  • Perl » Perl » Version: 5.23.1
    cpe:2.3:a:perl:perl:5.23.1
  • Perl » Perl » Version: 5.23.2
    cpe:2.3:a:perl:perl:5.23.2
  • Perl » Perl » Version: 5.23.3
    cpe:2.3:a:perl:perl:5.23.3
  • Perl » Perl » Version: 5.23.4
    cpe:2.3:a:perl:perl:5.23.4
  • Perl » Perl » Version: 5.23.5
    cpe:2.3:a:perl:perl:5.23.5
  • Perl » Perl » Version: 5.23.6
    cpe:2.3:a:perl:perl:5.23.6
  • Perl » Perl » Version: 5.23.7
    cpe:2.3:a:perl:perl:5.23.7
  • Perl » Perl » Version: 5.23.8
    cpe:2.3:a:perl:perl:5.23.8
  • Perl » Perl » Version: 5.23.9
    cpe:2.3:a:perl:perl:5.23.9
  • Perl » Perl » Version: 5.24.0
    cpe:2.3:a:perl:perl:5.24.0
  • Perl » Perl » Version: 5.25.0
    cpe:2.3:a:perl:perl:5.25.0
  • Perl » Perl » Version: 5.25.1
    cpe:2.3:a:perl:perl:5.25.1
  • Perl » Perl » Version: 5.25.2
    cpe:2.3:a:perl:perl:5.25.2
  • Canonical » Ubuntu Linux » Version: 12.04
    cpe:2.3:o:canonical:ubuntu_linux:12.04
  • Canonical » Ubuntu Linux » Version: 14.04
    cpe:2.3:o:canonical:ubuntu_linux:14.04
  • Canonical » Ubuntu Linux » Version: 16.04
    cpe:2.3:o:canonical:ubuntu_linux:16.04
  • Canonical » Ubuntu Linux » Version: 17.10
    cpe:2.3:o:canonical:ubuntu_linux:17.10
  • Debian » Debian Linux » Version: 8.0
    cpe:2.3:o:debian:debian_linux:8.0
  • Fedoraproject » Fedora » Version: 22
    cpe:2.3:o:fedoraproject:fedora:22
  • Fedoraproject » Fedora » Version: 23
    cpe:2.3:o:fedoraproject:fedora:23
  • Fedoraproject » Fedora » Version: 24
    cpe:2.3:o:fedoraproject:fedora:24
  • Oracle » Solaris » Version: 10
    cpe:2.3:o:oracle:solaris:10
  • Oracle » Solaris » Version: 11.3
    cpe:2.3:o:oracle:solaris:11.3


Contact Us

Shodan ® - All rights reserved