Critical severity9.8NVD Advisory· Published Nov 7, 2017· Updated Jun 16, 2026
CVE-2008-7319
CVE-2008-7319
Description
The Net::Ping::External extension through 0.15 for Perl does not properly sanitize arguments (e.g., invalid hostnames) containing shell metacharacters before use of backticks in External.pm, allowing for shell command injection and arbitrary command execution if untrusted input is used.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2- cpe:2.3:a:net-ping-external_project:net-ping-external:*:*:*:*:*:perl:*:*Range: <=0.15
- Range: <=0.15
Patches
Vulnerability mechanics
References
4- matthias.sdfeu.org/devel/net-ping-external-cmd-injection.patchnvdIssue TrackingPatchThird Party Advisory
- www.openwall.com/lists/oss-security/2017/11/07/4nvdIssue TrackingMailing ListPatchThird Party Advisory
- bugs.debian.org/881097nvdIssue TrackingPatchThird Party Advisory
- rt.cpan.org/Public/Bug/Display.htmlnvdIssue TrackingThird Party Advisory
News mentions
0No linked articles in our index yet.