FreshPorts - VuXML

This page displays vulnerability information about FreeBSD Ports.

The last vuln.xml file processed by FreshPorts is:

Revision:  371856
Date:      2014-10-31
Time:      15:38:00Z
Committer: rea

List all Vulnerabilities, by package

List all Vulnerabilities, by date

These are the vulnerabilities relating to the commit you have selected:

VuXML IDDescription
73efb1b7-07ec-11e2-a391-000c29033c32eperl -- Remote code execution

David Madison reports:

ePerl is a multipurpose Perl filter and interpreter program for Unix systems. The ePerl preprocessor contains an input validation error. The preprocessor allows foreign data to be "safely" included using the 'sinclude' directive.

The problem occurs when a file referenced by a 'sinclude' directive contains a 'include' directive; the contents of the file referred to by the second directive will be loaded and executed.


Discovery 2001-06-21
Entry 2012-09-26
eperl
le 2.2.14_4

CVE-2001-0733
http://www.shmoo.com/mail/bugtraq/jun01/msg00286.shtml
2912
http://xforce.iss.net/xforce/xfdb/6743
http://osvdb.org/show/osvdb/1880