Home

CVE-2012-5526

Description

CGI.pm module before 3.63 for Perl does not properly escape newlines in (1) Set-Cookie or (2) P3P headers, which might allow remote attackers to inject arbitrary headers into responses from applications that use CGI.pm.

Risk Information

Base Score
6.5
MODERATE
Vector
AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:N
EPSS Score
Exploitation Probability
1.72

Associated Vulnerability

VulnerabilityOS Platform
(RHSA-2013:0685) Moderate: perl security update perl-5.10.1-130.el6_4.i686.rpmLinux
(RHSA-2013:0685) Moderate: perl security update perl-5.10.1-130.el6_4.x86_64.rpmLinux
(RHSA-2013:0685) Moderate: perl security update perl-5.8.8-40.el5_9.i386.rpmLinux
(RHSA-2013:0685) Moderate: perl security update perl-5.8.8-40.el5_9.x86_64.rpmLinux
(RHSA-2013:0685) Moderate: perl security update perl-Archive-Extract-0.38-130.el6_4.i686.rpmLinux
(RHSA-2013:0685) Moderate: perl security update perl-Archive-Extract-0.38-130.el6_4.x86_64.rpmLinux
(RHSA-2013:0685) Moderate: perl security update perl-Archive-Tar-1.58-130.el6_4.i686.rpmLinux
(RHSA-2013:0685) Moderate: perl security update perl-Archive-Tar-1.58-130.el6_4.x86_64.rpmLinux
(RHSA-2013:0685) Moderate: perl security update perl-CGI-3.51-130.el6_4.i686.rpmLinux
(RHSA-2013:0685) Moderate: perl security update perl-CGI-3.51-130.el6_4.x86_64.rpmLinux
(RHSA-2013:0685) Moderate: perl security update perl-CPAN-1.9402-130.el6_4.i686.rpmLinux
(RHSA-2013:0685) Moderate: perl security update perl-CPAN-1.9402-130.el6_4.x86_64.rpmLinux
(RHSA-2013:0685) Moderate: perl security update perl-CPANPLUS-0.88-130.el6_4.i686.rpmLinux
(RHSA-2013:0685) Moderate: perl security update perl-CPANPLUS-0.88-130.el6_4.x86_64.rpmLinux
(RHSA-2013:0685) Moderate: perl security update perl-Compress-Raw-Bzip2-2.020-130.el6_4.i686.rpmLinux
(RHSA-2013:0685) Moderate: perl security update perl-Compress-Raw-Bzip2-2.020-130.el6_4.x86_64.rpmLinux
(RHSA-2013:0685) Moderate: perl security update perl-Compress-Raw-Zlib-2.020-130.el6_4.i686.rpmLinux
(RHSA-2013:0685) Moderate: perl security update perl-Compress-Raw-Zlib-2.020-130.el6_4.x86_64.rpmLinux
(RHSA-2013:0685) Moderate: perl security update perl-Compress-Zlib-2.020-130.el6_4.i686.rpmLinux
(RHSA-2013:0685) Moderate: perl security update perl-Compress-Zlib-2.020-130.el6_4.x86_64.rpmLinux
(RHSA-2013:0685) Moderate: perl security update perl-Digest-SHA-5.47-130.el6_4.i686.rpmLinux
(RHSA-2013:0685) Moderate: perl security update perl-Digest-SHA-5.47-130.el6_4.x86_64.rpmLinux
(RHSA-2013:0685) Moderate: perl security update perl-ExtUtils-CBuilder-0.27-130.el6_4.i686.rpmLinux
(RHSA-2013:0685) Moderate: perl security update perl-ExtUtils-CBuilder-0.27-130.el6_4.x86_64.rpmLinux
(RHSA-2013:0685) Moderate: perl security update perl-ExtUtils-Embed-1.28-130.el6_4.i686.rpmLinux
(RHSA-2013:0685) Moderate: perl security update perl-ExtUtils-Embed-1.28-130.el6_4.x86_64.rpmLinux
(RHSA-2013:0685) Moderate: perl security update perl-ExtUtils-MakeMaker-6.55-130.el6_4.i686.rpmLinux
(RHSA-2013:0685) Moderate: perl security update perl-ExtUtils-MakeMaker-6.55-130.el6_4.x86_64.rpmLinux
(RHSA-2013:0685) Moderate: perl security update perl-ExtUtils-ParseXS-2.2003.0-130.el6_4.i686.rpmLinux
(RHSA-2013:0685) Moderate: perl security update perl-ExtUtils-ParseXS-2.2003.0-130.el6_4.x86_64.rpmLinux
(RHSA-2013:0685) Moderate: perl security update perl-File-Fetch-0.26-130.el6_4.i686.rpmLinux
(RHSA-2013:0685) Moderate: perl security update perl-File-Fetch-0.26-130.el6_4.x86_64.rpmLinux
(RHSA-2013:0685) Moderate: perl security update perl-IO-Compress-Base-2.020-130.el6_4.i686.rpmLinux
(RHSA-2013:0685) Moderate: perl security update perl-IO-Compress-Base-2.020-130.el6_4.x86_64.rpmLinux
(RHSA-2013:0685) Moderate: perl security update perl-IO-Compress-Bzip2-2.020-130.el6_4.i686.rpmLinux
(RHSA-2013:0685) Moderate: perl security update perl-IO-Compress-Bzip2-2.020-130.el6_4.x86_64.rpmLinux
(RHSA-2013:0685) Moderate: perl security update perl-IO-Compress-Zlib-2.020-130.el6_4.i686.rpmLinux
(RHSA-2013:0685) Moderate: perl security update perl-IO-Compress-Zlib-2.020-130.el6_4.x86_64.rpmLinux
(RHSA-2013:0685) Moderate: perl security update perl-IO-Zlib-1.09-130.el6_4.i686.rpmLinux
(RHSA-2013:0685) Moderate: perl security update perl-IO-Zlib-1.09-130.el6_4.x86_64.rpmLinux
(RHSA-2013:0685) Moderate: perl security update perl-IPC-Cmd-0.56-130.el6_4.i686.rpmLinux
(RHSA-2013:0685) Moderate: perl security update perl-IPC-Cmd-0.56-130.el6_4.x86_64.rpmLinux
(RHSA-2013:0685) Moderate: perl security update perl-Locale-Maketext-Simple-0.18-130.el6_4.i686.rpmLinux
(RHSA-2013:0685) Moderate: perl security update perl-Locale-Maketext-Simple-0.18-130.el6_4.x86_64.rpmLinux
(RHSA-2013:0685) Moderate: perl security update perl-Log-Message-0.02-130.el6_4.i686.rpmLinux
(RHSA-2013:0685) Moderate: perl security update perl-Log-Message-0.02-130.el6_4.x86_64.rpmLinux
(RHSA-2013:0685) Moderate: perl security update perl-Log-Message-Simple-0.04-130.el6_4.i686.rpmLinux
(RHSA-2013:0685) Moderate: perl security update perl-Log-Message-Simple-0.04-130.el6_4.x86_64.rpmLinux
(RHSA-2013:0685) Moderate: perl security update perl-Module-Build-0.3500-130.el6_4.i686.rpmLinux
(RHSA-2013:0685) Moderate: perl security update perl-Module-Build-0.3500-130.el6_4.x86_64.rpmLinux
(RHSA-2013:0685) Moderate: perl security update perl-Module-CoreList-2.18-130.el6_4.i686.rpmLinux
(RHSA-2013:0685) Moderate: perl security update perl-Module-CoreList-2.18-130.el6_4.x86_64.rpmLinux
(RHSA-2013:0685) Moderate: perl security update perl-Module-Load-0.16-130.el6_4.i686.rpmLinux
(RHSA-2013:0685) Moderate: perl security update perl-Module-Load-0.16-130.el6_4.x86_64.rpmLinux
(RHSA-2013:0685) Moderate: perl security update perl-Module-Load-Conditional-0.30-130.el6_4.i686.rpmLinux
(RHSA-2013:0685) Moderate: perl security update perl-Module-Load-Conditional-0.30-130.el6_4.x86_64.rpmLinux
(RHSA-2013:0685) Moderate: perl security update perl-Module-Loaded-0.02-130.el6_4.i686.rpmLinux
(RHSA-2013:0685) Moderate: perl security update perl-Module-Loaded-0.02-130.el6_4.x86_64.rpmLinux
(RHSA-2013:0685) Moderate: perl security update perl-Module-Pluggable-3.90-130.el6_4.i686.rpmLinux
(RHSA-2013:0685) Moderate: perl security update perl-Module-Pluggable-3.90-130.el6_4.x86_64.rpmLinux
(RHSA-2013:0685) Moderate: perl security update perl-Object-Accessor-0.34-130.el6_4.i686.rpmLinux
(RHSA-2013:0685) Moderate: perl security update perl-Object-Accessor-0.34-130.el6_4.x86_64.rpmLinux
(RHSA-2013:0685) Moderate: perl security update perl-Package-Constants-0.02-130.el6_4.i686.rpmLinux
(RHSA-2013:0685) Moderate: perl security update perl-Package-Constants-0.02-130.el6_4.x86_64.rpmLinux
(RHSA-2013:0685) Moderate: perl security update perl-Params-Check-0.26-130.el6_4.i686.rpmLinux
(RHSA-2013:0685) Moderate: perl security update perl-Params-Check-0.26-130.el6_4.x86_64.rpmLinux
(RHSA-2013:0685) Moderate: perl security update perl-Parse-CPAN-Meta-1.40-130.el6_4.i686.rpmLinux
(RHSA-2013:0685) Moderate: perl security update perl-Parse-CPAN-Meta-1.40-130.el6_4.x86_64.rpmLinux
(RHSA-2013:0685) Moderate: perl security update perl-Pod-Escapes-1.04-130.el6_4.i686.rpmLinux
(RHSA-2013:0685) Moderate: perl security update perl-Pod-Escapes-1.04-130.el6_4.x86_64.rpmLinux
(RHSA-2013:0685) Moderate: perl security update perl-Pod-Simple-3.13-130.el6_4.i686.rpmLinux
(RHSA-2013:0685) Moderate: perl security update perl-Pod-Simple-3.13-130.el6_4.x86_64.rpmLinux
(RHSA-2013:0685) Moderate: perl security update perl-Term-UI-0.20-130.el6_4.i686.rpmLinux
(RHSA-2013:0685) Moderate: perl security update perl-Term-UI-0.20-130.el6_4.x86_64.rpmLinux
(RHSA-2013:0685) Moderate: perl security update perl-Test-Harness-3.17-130.el6_4.i686.rpmLinux
(RHSA-2013:0685) Moderate: perl security update perl-Test-Harness-3.17-130.el6_4.x86_64.rpmLinux
(RHSA-2013:0685) Moderate: perl security update perl-Test-Simple-0.92-130.el6_4.i686.rpmLinux
(RHSA-2013:0685) Moderate: perl security update perl-Test-Simple-0.92-130.el6_4.x86_64.rpmLinux
(RHSA-2013:0685) Moderate: perl security update perl-Time-HiRes-1.9721-130.el6_4.i686.rpmLinux
(RHSA-2013:0685) Moderate: perl security update perl-Time-HiRes-1.9721-130.el6_4.x86_64.rpmLinux
(RHSA-2013:0685) Moderate: perl security update perl-Time-Piece-1.15-130.el6_4.i686.rpmLinux
(RHSA-2013:0685) Moderate: perl security update perl-Time-Piece-1.15-130.el6_4.x86_64.rpmLinux
(RHSA-2013:0685) Moderate: perl security update perl-core-5.10.1-130.el6_4.i686.rpmLinux
(RHSA-2013:0685) Moderate: perl security update perl-core-5.10.1-130.el6_4.x86_64.rpmLinux
(RHSA-2013:0685) Moderate: perl security update perl-devel-5.10.1-130.el6_4.i686.rpmLinux
(RHSA-2013:0685) Moderate: perl security update perl-devel-5.10.1-130.el6_4.x86_64.rpmLinux
(RHSA-2013:0685) Moderate: perl security update perl-libs-5.10.1-130.el6_4.i686.rpmLinux
(RHSA-2013:0685) Moderate: perl security update perl-libs-5.10.1-130.el6_4.x86_64.rpmLinux
(RHSA-2013:0685) Moderate: perl security update perl-parent-0.221-130.el6_4.i686.rpmLinux
(RHSA-2013:0685) Moderate: perl security update perl-parent-0.221-130.el6_4.x86_64.rpmLinux
(RHSA-2013:0685) Moderate: perl security update perl-suidperl-5.10.1-130.el6_4.i686.rpmLinux
(RHSA-2013:0685) Moderate: perl security update perl-suidperl-5.10.1-130.el6_4.x86_64.rpmLinux
(RHSA-2013:0685) Moderate: perl security update perl-suidperl-5.8.8-40.el5_9.i386.rpmLinux
(RHSA-2013:0685) Moderate: perl security update perl-suidperl-5.8.8-40.el5_9.x86_64.rpmLinux
(RHSA-2013:0685) Moderate: perl security update perl-version-0.77-130.el6_4.i686.rpmLinux
(RHSA-2013:0685) Moderate: perl security update perl-version-0.77-130.el6_4.x86_64.rpmLinux
CVE-2012-5526NCM

Patch Details

No records found

References

https://nvd.nist.gov/vuln/detail/CVE-2023-1234
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-1234