CVE-2016-2381 (communications_billing_and_revenue_management, configuration_manager, database_server, debian_linux, enterprise_manager_base_platform, opensuse, perl, solaris, timesten_in-memory_database, ubuntu_linux)

Perl might allow context-dependent attackers to bypass the taint protection mechanism in a child process via duplicate environment variables in envp.

View Full Alert

Leave a Reply