ePerl Remote Buffer Overflow Vulnerability

ePerl, a multipurpose Perl interpreter, contains several string operations which are performed insecurely.

If the data copied is externally-supplied, it may be possible for an attacker to exploit these insecure function calls as stack based buffer overflows.

If ePerl is installed setuid root, which is an optional configuration, an attacker may be able to execute arbitrary code with superuser privileges.


 

Privacy Statement
Copyright 2010, SecurityFocus