Eval injection vulnerability in the Digest module before 1.17 for Perl allows context-dependent attackers to execute arbitrary commands via the new constructor.
2012-01-13T18:55:03.030
2025-04-11T00:51:21.963
Deferred
CVSSv2: 7.5 (HIGH)
AV:N/AC:L/Au:N/C:P/I:P/A:P
10.0
6.4
| Type | Vendor | Product | Version/Range | Vulnerable? |
|---|---|---|---|---|
| Application | gisle_aas | digest | 1.00 | Yes |
| Application | gisle_aas | digest | 1.01 | Yes |
| Application | gisle_aas | digest | 1.02 | Yes |
| Application | gisle_aas | digest | 1.03 | Yes |
| Application | gisle_aas | digest | 1.04 | Yes |
| Application | gisle_aas | digest | 1.05 | Yes |
| Application | gisle_aas | digest | 1.06 | Yes |
| Application | gisle_aas | digest | 1.07 | Yes |
| Application | gisle_aas | digest | 1.08 | Yes |
| Application | gisle_aas | digest | 1.09 | Yes |
| Application | gisle_aas | digest | 1.10 | Yes |
| Application | gisle_aas | digest | 1.11 | Yes |
| Application | gisle_aas | digest | 1.12 | Yes |
| Application | gisle_aas | digest | 1.13 | Yes |
| Application | gisle_aas | digest | 1.14 | Yes |
| Application | gisle_aas | digest | 1.15 | Yes |
| Application | gisle_aas | digest | 1.16 | Yes |