Unrated severityNVD Advisory· Published Jan 13, 2012· Updated Apr 29, 2026
CVE-2011-3597
CVE-2011-3597
Description
Eval injection vulnerability in the Digest module before 1.17 for Perl allows context-dependent attackers to execute arbitrary commands via the new constructor.
Affected products
17cpe:2.3:a:gisle_aas:digest:1.00:*:*:*:*:*:*:*+ 16 more
- cpe:2.3:a:gisle_aas:digest:1.00:*:*:*:*:*:*:*
- cpe:2.3:a:gisle_aas:digest:1.01:*:*:*:*:*:*:*
- cpe:2.3:a:gisle_aas:digest:1.02:*:*:*:*:*:*:*
- cpe:2.3:a:gisle_aas:digest:1.03:*:*:*:*:*:*:*
- cpe:2.3:a:gisle_aas:digest:1.04:*:*:*:*:*:*:*
- cpe:2.3:a:gisle_aas:digest:1.05:*:*:*:*:*:*:*
- cpe:2.3:a:gisle_aas:digest:1.06:*:*:*:*:*:*:*
- cpe:2.3:a:gisle_aas:digest:1.07:*:*:*:*:*:*:*
- cpe:2.3:a:gisle_aas:digest:1.08:*:*:*:*:*:*:*
- cpe:2.3:a:gisle_aas:digest:1.09:*:*:*:*:*:*:*
- cpe:2.3:a:gisle_aas:digest:1.10:*:*:*:*:*:*:*
- cpe:2.3:a:gisle_aas:digest:1.11:*:*:*:*:*:*:*
- cpe:2.3:a:gisle_aas:digest:1.12:*:*:*:*:*:*:*
- cpe:2.3:a:gisle_aas:digest:1.13:*:*:*:*:*:*:*
- cpe:2.3:a:gisle_aas:digest:1.14:*:*:*:*:*:*:*
- cpe:2.3:a:gisle_aas:digest:1.15:*:*:*:*:*:*:*
- cpe:2.3:a:gisle_aas:digest:1.16:*:*:*:*:*:*:*
Patches
0No patches discovered yet.
Vulnerability mechanics
AI mechanics synthesis has not run for this CVE yet.
References
14- bugzilla.redhat.com/show_bug.cginvdPatch
- secunia.com/advisories/46279nvdVendor Advisory
- aix.software.ibm.com/aix/efixes/security/perl_advisory2.ascnvd
- cpansearch.perl.org/src/GAAS/Digest-1.17/Changesnvd
- kb.juniper.net/InfoCenter/indexnvd
- kb.juniper.net/InfoCenter/indexnvd
- secunia.com/advisories/51457nvd
- www.mandriva.com/security/advisoriesnvd
- www.mandriva.com/security/advisoriesnvd
- www.redhat.com/support/errata/RHSA-2011-1424.htmlnvd
- www.redhat.com/support/errata/RHSA-2011-1797.htmlnvd
- www.securityfocus.com/bid/49911nvd
- www.ubuntu.com/usn/USN-1643-1nvd
- oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A19446nvd
News mentions
0No linked articles in our index yet.