Lucene search
Debian Security Bug TrackerDEBIANCVE:CVE-2012-5572HistoryMay 30, 2014 - 2:55 p.m.
CVE-2012-5572
2014-05-3014:55:06
Debian Security Bug Tracker
security-tracker.debian.org
19
CVSS2
5
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:L/Au:N/C:N/I:P/A:N
EPSS
0.008
Percentile
81.5%
CRLF injection vulnerability in the cookie method (lib/Dancer/Cookie.pm) in Dancer before 1.3114 allows remote attackers to inject arbitrary HTTP headers and conduct HTTP response splitting attacks via a cookie name, a different vulnerability than CVE-2012-5526.
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| Debian | 12 | all | libdancer-perl | < 1.3114+dfsg-1 | libdancer-perl_1.3114+dfsg-1_all.deb |
| Debian | 11 | all | libdancer-perl | < 1.3114+dfsg-1 | libdancer-perl_1.3114+dfsg-1_all.deb |
| Debian | 999 | all | libdancer-perl | < 1.3114+dfsg-1 | libdancer-perl_1.3114+dfsg-1_all.deb |
| Debian | 13 | all | libdancer-perl | < 1.3114+dfsg-1 | libdancer-perl_1.3114+dfsg-1_all.deb |
Related
cvelist
cvelist
CVE-2012-5572
2014-05-30 14:00:00
CVE-2012-5526
2012-11-21 23:00:00
nvd
nvd
CVE-2012-5572
2014-05-30 14:55:06
CVE-2012-5526
2012-11-21 23:55:02
prion
prion
Crlf injection
2014-05-30 14:55:00
Design/Logic Flaw
2012-11-21 23:55:00
cve
cve
CVE-2012-5572
2014-05-30 14:55:06
CVE-2012-5526
2012-11-21 23:55:02
ubuntucve
ubuntucve
CVE-2012-5572
2014-05-30 00:00:00
CVE-2012-5526
2012-11-21 00:00:00
openvas
openvas
Fedora Update for perl-Dancer FEDORA-2013-9950
2013-06-18 00:00:00
Mageia: Security Advisory (MGASA-2013-0183)
2022-01-28 00:00:00
Fedora Update for perl-Dancer FEDORA-2013-9950
2013-06-18 00:00:00
fedora
fedora
[SECURITY] Fedora 19 Update: perl-Dancer-1.3111-3.fc19
2013-06-12 03:36:47
[SECURITY] Fedora 17 Update: perl-Dancer-1.3093-3.fc17
2013-06-13 05:56:40
[SECURITY] Fedora 18 Update: perl-Dancer-1.3100-3.fc18
2013-06-13 05:58:24
nessus
nessus
Fedora 19 : perl-Dancer-1.3111-3.fc19 (2013-9918)
2013-07-12 00:00:00
Mandriva Linux Security Advisory : perl-Dancer (MDVSA-2013:184)
2013-06-28 00:00:00
Fedora 17 : perl-Dancer-1.3093-3.fc17 (2013-9961)
2013-07-12 00:00:00
securityvulns
securityvulns
perl-Dancer headers injection
2013-07-08 00:00:00
[ MDVSA-2013:184 ] perl-Dancer
2013-07-08 00:00:00
[USN-1643-1] Perl vulnerabilities
2012-12-02 00:00:00
mageia
mageia
Updated perl-Dancer package fixes CVE-2012-5572
2013-06-26 22:11:16
debian
debian
[SECURITY] [DSA 2587-1] libcgi-pm-perl security update
2012-12-11 20:35:49
[SECURITY] [DSA 2586-1] perl security update
2012-12-11 19:11:09
debiancve
debiancve
CVE-2012-5526
2012-11-21 23:55:02
osv
osv
perl - several
2012-12-11 00:00:00
aix
aix
suse
suse
update for perl (important)
2013-03-20 11:05:11
update for perl (important)
2013-03-20 14:04:22
Security update for Perl (important)
2013-03-13 00:05:41
centos
centos
perl security update
2013-03-26 21:05:02
f5
f5
veracode
veracode
HTTP Header Injection
2019-05-02 04:54:30
Privilege Escalation
2019-05-02 04:54:30
Memory Corruption
2019-05-02 04:54:30
oraclelinux
oraclelinux
perl security update
2013-03-26 00:00:00
ubuntu
ubuntu
Perl vulnerabilities
2012-11-30 00:00:00
redhat
redhat
(RHSA-2013:0685) Moderate: perl security update
2013-03-26 00:00:00
(RHSA-2013:0746) Important: rhev-hypervisor6 security and bug fix update
2013-04-23 00:00:00
amazon
amazon
Medium: perl
2013-04-04 11:10:00
CVSS2
5
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:L/Au:N/C:N/I:P/A:N
EPSS
0.008
Percentile
81.5%
Related for DEBIANCVE:CVE-2012-5572