This CPE summary could be partial or incomplete. Please contact us for a detailed listing.

Summary

Detail
Vendor Gisle Aas First view 2012-01-13
Product Digest Last view 2012-01-13
Version Type Application
Update  
Edition  
Language  
Sofware Edition  
Target Software  
Target Hardware  
Other  

Activity : Overall

COMMON PLATFORM ENUMERATION: Repartition per Version

CPE Name Affected CVE
cpe:2.3:a:gisle_aas:digest:1.16:*:*:*:*:*:*:* 1
cpe:2.3:a:gisle_aas:digest:1.01:*:*:*:*:*:*:* 1
cpe:2.3:a:gisle_aas:digest:1.11:*:*:*:*:*:*:* 1
cpe:2.3:a:gisle_aas:digest:1.07:*:*:*:*:*:*:* 1
cpe:2.3:a:gisle_aas:digest:1.06:*:*:*:*:*:*:* 1
cpe:2.3:a:gisle_aas:digest:1.15:*:*:*:*:*:*:* 1
cpe:2.3:a:gisle_aas:digest:1.04:*:*:*:*:*:*:* 1
cpe:2.3:a:gisle_aas:digest:1.05:*:*:*:*:*:*:* 1
cpe:2.3:a:gisle_aas:digest:1.14:*:*:*:*:*:*:* 1
cpe:2.3:a:gisle_aas:digest:1.12:*:*:*:*:*:*:* 1
cpe:2.3:a:gisle_aas:digest:1.10:*:*:*:*:*:*:* 1
cpe:2.3:a:gisle_aas:digest:1.00:*:*:*:*:*:*:* 1
cpe:2.3:a:gisle_aas:digest:1.03:*:*:*:*:*:*:* 1
cpe:2.3:a:gisle_aas:digest:1.09:*:*:*:*:*:*:* 1
cpe:2.3:a:gisle_aas:digest:1.02:*:*:*:*:*:*:* 1
cpe:2.3:a:gisle_aas:digest:1.13:*:*:*:*:*:*:* 1
cpe:2.3:a:gisle_aas:digest:1.08:*:*:*:*:*:*:* 1

Related : CVE

  Date Alert Description
7.5 2012-01-13 CVE-2011-3597

Eval injection vulnerability in the Digest module before 1.17 for Perl allows context-dependent attackers to execute arbitrary commands via the new constructor.

CWE : Common Weakness Enumeration

%idName
100% (1) CWE-20 Improper Input Validation

Oval Markup Language : Definitions

OvalID Name
oval:org.mitre.oval:def:22078 RHSA-2011:1424: perl security update (Moderate)
oval:org.mitre.oval:def:21725 RHSA-2011:1797: perl security update (Moderate)
oval:org.mitre.oval:def:20560 VMware vSphere and vCOps updates to third party libraries
oval:org.mitre.oval:def:19446 Perl Digest Module Code Injection Vulnerability
oval:org.mitre.oval:def:23778 ELSA-2011:1424: perl security update (Moderate)
oval:org.mitre.oval:def:23231 ELSA-2011:1797: perl security update (Moderate)
oval:org.mitre.oval:def:27753 DEPRECATED: ELSA-2011-1424 -- perl security update (moderate)

Open Source Vulnerability Database (OSVDB)

id Description
75990 Digest Module for Perl Digest->new() Function eval() Call Remote Perl Code...

OpenVAS Exploits

id Description
2012-12-04 Name : Ubuntu Update for perl USN-1643-1
File : nvt/gb_ubuntu_USN_1643_1.nasl
2012-08-31 Name : VMSA-2012-0013 VMware vSphere and vCOps updates to third party libraries.
File : nvt/gb_VMSA-2012-0013.nasl
2012-07-30 Name : CentOS Update for perl CESA-2011:1797 centos4 x86_64
File : nvt/gb_CESA-2011_1797_perl_centos4_x86_64.nasl
2012-07-30 Name : CentOS Update for perl CESA-2011:1797 centos5 x86_64
File : nvt/gb_CESA-2011_1797_perl_centos5_x86_64.nasl
2012-07-09 Name : RedHat Update for perl RHSA-2011:1424-01
File : nvt/gb_RHSA-2011_1424-01_perl.nasl
2012-01-20 Name : Mandriva Update for perl MDVSA-2012:008 (perl)
File : nvt/gb_mandriva_MDVSA_2012_008.nasl
2012-01-20 Name : Mandriva Update for perl MDVSA-2012:009 (perl)
File : nvt/gb_mandriva_MDVSA_2012_009.nasl
2012-01-17 Name : Strawberry Perl Modules Multiple Vulnerabilities (Windows)
File : nvt/gb_perl_modules_mult_vuln_win.nasl
2011-12-12 Name : CentOS Update for perl CESA-2011:1797 centos4 i386
File : nvt/gb_CESA-2011_1797_perl_centos4_i386.nasl
2011-12-12 Name : CentOS Update for perl CESA-2011:1797 centos5 i386
File : nvt/gb_CESA-2011_1797_perl_centos5_i386.nasl
2011-12-09 Name : RedHat Update for perl RHSA-2011:1797-01
File : nvt/gb_RHSA-2011_1797-01_perl.nasl
2011-11-03 Name : Fedora Update for perl FEDORA-2011-13874
File : nvt/gb_fedora_2011_13874_perl_fc14.nasl

Information Assurance Vulnerability Management (IAVM)

id Description
2012-A-0153 Multiple Vulnerabilities in VMware ESX 4.0 and ESXi 4.0
Severity: Category I - VMSKEY: V0033884
2012-A-0148 Multiple Vulnerabilities in VMware ESXi 4.1 and ESX 4.1
Severity: Category I - VMSKEY: V0033794

Nessus® Vulnerability Scanner

id Description
2016-02-29 Name: The remote VMware ESX / ESXi host is missing a security-related patch.
File: vmware_VMSA-2012-0013_remote.nasl - Type: ACT_GATHER_INFO
2015-01-19 Name: The remote Solaris system is missing a security patch for third-party software.
File: solaris11_perl-58_20131017_2.nasl - Type: ACT_GATHER_INFO
2014-01-30 Name: The remote Gentoo host is missing one or more security-related patches.
File: gentoo_GLSA-201401-33.nasl - Type: ACT_GATHER_INFO
2013-09-04 Name: The remote Amazon Linux AMI host is missing a security update.
File: ala_ALAS-2011-19.nasl - Type: ACT_GATHER_INFO
2013-07-12 Name: The remote Oracle Linux host is missing one or more security updates.
File: oraclelinux_ELSA-2011-1424.nasl - Type: ACT_GATHER_INFO
2013-07-12 Name: The remote Oracle Linux host is missing one or more security updates.
File: oraclelinux_ELSA-2011-1797.nasl - Type: ACT_GATHER_INFO
2013-01-30 Name: The remote AIX host is missing a security patch.
File: aix_IV10197.nasl - Type: ACT_GATHER_INFO
2012-11-30 Name: The remote Ubuntu host is missing a security-related patch.
File: ubuntu_USN-1643-1.nasl - Type: ACT_GATHER_INFO
2012-08-31 Name: The remote VMware ESXi / ESX host is missing one or more security-related pat...
File: vmware_VMSA-2012-0013.nasl - Type: ACT_GATHER_INFO
2012-08-01 Name: The remote Scientific Linux host is missing one or more security updates.
File: sl_20111103_perl_on_SL6_x.nasl - Type: ACT_GATHER_INFO
2012-08-01 Name: The remote Scientific Linux host is missing one or more security updates.
File: sl_20111208_perl_on_SL4_x.nasl - Type: ACT_GATHER_INFO
2012-01-19 Name: The remote Mandriva Linux host is missing one or more security updates.
File: mandriva_MDVSA-2012-008.nasl - Type: ACT_GATHER_INFO
2011-12-12 Name: The remote CentOS host is missing one or more security updates.
File: centos_RHSA-2011-1797.nasl - Type: ACT_GATHER_INFO
2011-12-09 Name: The remote Red Hat host is missing one or more security updates.
File: redhat-RHSA-2011-1797.nasl - Type: ACT_GATHER_INFO
2011-11-04 Name: The remote host is missing the patch for the advisory RHSA-2011-1424
File: redhat-RHSA-2011-1424.nasl - Type: ACT_GATHER_INFO
2011-11-03 Name: The remote Fedora host is missing a security update.
File: fedora_2011-13874.nasl - Type: ACT_GATHER_INFO