CVE-2017-0373

Summary

The gen_class_pod implementation in lib/Config/Model/Utils/GenClassPod.pm in Config-Model (aka libconfig-model-perl) before 2.102 has a dangerous "use lib" line, which allows remote attackers to have an unspecified impact via a crafted Debian package file.

Affected Software

VendorProductVersion RangeStatus
n/alibconfig-model-perllibconfig-model-perlaffected

Weaknesses

  • library mishandling

ADP Enrichment

CVE Program Container

Additional References

References