CVE-2024-58278

Q: How severe is CVE-2024-58278?

CVSS scoring is not yet available for CVE-2024-58278. Check NVD for updates.

Q: Is there a patch for CVE-2024-58278?

Check the references section above for vendor advisories and patch information. Review vendor security bulletins for remediation guidance.

Vulnerability Description

perl2exe <= V30.10C contains an arbitrary code execution vulnerability that allows local authenticated attackers to execute malicious scripts. Attackers can control the 0th argument of packed executables to execute another executable, allowing them to bypass restrictions and gain unauthorized access.

Related Weaknesses (CWE)

CWE-78

References

https://www.exploit-db.com/exploits/51825
https://www.indigostar.com/
https://www.indigostar.com/download/p2x-30.10-Linux-x64-5.30.1.tar.gz
https://www.vulncheck.com/advisories/indigostar-software-perl2exe-v3010c-arbitra

FAQ

What is CVE-2024-58278?

CVE-2024-58278 is a documented vulnerability. perl2exe <= V30.10C contains an arbitrary code execution vulnerability that allows local authenticated attackers to execute malicious scripts. Attackers can control the 0th argument of packed executab...

How severe is CVE-2024-58278?

CVSS scoring is not yet available for CVE-2024-58278. Check NVD for updates.

Is there a patch for CVE-2024-58278?

Check the references section above for vendor advisories and patch information. Review vendor security bulletins for remediation guidance.