The remote NewStart CGSL host, running version MAIN 6.06 (SP), has perl packages installed that are affected by multiple vulnerabilities:

  - Heap-based buffer overflow in the pack function in Perl before 5.26.2 allows context-dependent attackers     to execute arbitrary code via a large item count. (CVE-2018-6913)

  - Directory traversal vulnerability in the Archive::Tar Perl module 1.36 and earlier allows user-assisted     remote attackers to overwrite arbitrary files via a TAR archive that contains a file whose name is an     absolute path or has .. sequences. (CVE-2007-4829)

  - The rmtree function in lib/File/Path.pm in Perl 5.10 does not properly check permissions before performing     a chmod, which allows local users to modify the permissions of arbitrary files via a symlink attack, a     different vulnerability than CVE-2005-0448 and CVE-2004-0452. (CVE-2008-2827)

  - Perl 5.10.1 allows context-dependent attackers to cause a denial of service (application crash) via a     UTF-8 character with a large, invalid codepoint, which is not properly handled during a regular-expression     match. (CVE-2009-3626)

  - The bsd_glob function in the File::Glob module for Perl before 5.14.2 allows context-dependent attackers     to cause a denial of service (crash) via a glob expression with the GLOB_ALTDIRFUNC flag, which triggers     an uninitialized pointer dereference. (CVE-2011-2728)

Note that Nessus has not tested for these issues but has instead relied only on the application's self-reported version number.

Detections

Analytics

NewStart CGSL MAIN 6.06 (SP) : perl Multiple Vulnerabilities (NS-SA-2026-0016)

critical Nessus Plugin ID 301232

Version 1.2