CVE-2011-4116
LOWFile::Temp - Improper Link Resolution Before File Access
Title source: llmDescription
_is_safe in the File::Temp module for Perl does not properly handle symlinks.
References (5)
Core 5
Core References
Mailing List, Third Party Advisory x_refsource_misc
http://www.openwall.com/lists/oss-security/2011/11/04/2
Mailing List, Third Party Advisory x_refsource_misc
http://www.openwall.com/lists/oss-security/2011/11/04/4
Mailing List, Third Party Advisory x_refsource_misc
https://seclists.org/oss-sec/2011/q4/238
Issue Tracking, Patch, Vendor Advisory x_refsource_misc
https://rt.cpan.org/Public/Bug/Display.html?id=69106
Exploit, Third Party Advisory x_refsource_misc
https://github.com/Perl-Toolchain-Gang/File-Temp/issues/14
Scores
CVSS v3
3.3
EPSS
0.0052
EPSS Percentile
40.0%
Attack Vector
LOCAL
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:N
Details
CWE
CWE-59
Status
published
Products (1)
cpan/file\
\ temp
Published
Jan 31, 2020
Tracked Since
Feb 18, 2026