CyberSec.Space Logo
CVEブラウザに戻る

CVE-2012-5377

MEDIUM
6.0
CVSS Severity Score
EPSS Score0.0080%
EPSS Percentile21.40th
Published2012年10月11日
Last Modified2026年4月29日

Vulnerability Description

Untrusted search path vulnerability in the installation functionality in ActivePerl 5.16.1.1601, when installed in the top-level C:\ directory, allows local users to gain privileges via a Trojan horse DLL in the C:\Perl\Site\bin directory, which is added to the PATH system environment variable, as demonstrated by a Trojan horse wlbsctrl.dll file used by the "IKE and AuthIP IPsec Keying Modules" system service in Windows Vista SP1, Windows Server 2008 SP2, Windows 7 SP1, and Windows 8 Release Preview.

Affected Platforms (CPE)

📦
Activestate

Activeperl

= 5.16.1.1601

References & Advisories

🔗 http://osvdb.org/86177
🔗 https://www.htbridge.com/advisory/HTB23108
🔗 http://osvdb.org/86177
🔗 https://www.htbridge.com/advisory/HTB23108

関連する脆弱性情報

CVE-2004-037710.0

Buffer overflow in the win32_stat function for (1) ActiveState's ActivePerl and (2) Larry Wall's Perl before 5.8.3 allows local or...

CVE-2001-08157.5

Buffer overflow in PerlIS.dll in Activestate ActivePerl 5.6.1.629 and earlier allows remote attackers to execute arbitrary code vi...

CVE-2004-22867.5

Integer overflow in the duplication operator in ActivePerl allows remote attackers to cause a denial of service (crash) and possib...

CVE-2006-28564.6

ActiveState ActivePerl 5.8.8.817 for Windows configures the site/lib directory with "Users" group permissions for changing files, ...