Spoon signature verification security measure Bypass Vulnerability
Release date:
Updated on: 2014-06-07
Affected Systems:
Perl-Spoon perl-spoke 0.24
Description:
--------------------------------------------------------------------------------
Bugtraq id: 59834
CVE (CAN) ID: CVE-2012-6143
Spoon is an application framework for building social software Web applications.
Spoon module 0.24 for Perl's Spoon: Cookie does not properly use the Storable: thaw function, which allows remote attackers to execute arbitrary code through specially crafted requests.
<* Source: vendor
Link: http://xforce.iss.net/xforce/xfdb/84197
*>
Suggestion:
--------------------------------------------------------------------------------
Vendor patch:
Perl-Spoon
----------
The vendor has released a patch to fix this security problem. Please download it from the vendor's homepage:
Https://rt.cpan.org/Public/Bug/Display.html? Id = 85217
This article permanently updates the link address: