CVE-2010-1168

EPSS 4.48% · P89 Updated Feb 21, 2026

Get alerts for future matching vulnerabilitiesLog in to subscribe

I. Basic Information for CVE-2010-1168

Vulnerability Information

Have questions about the vulnerability? See if Shenlong's analysis helps!

Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.

Vulnerability Title

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Description

The Safe (aka Safe.pm) module before 2.25 for Perl allows context-dependent attackers to bypass intended (1) Safe::reval and (2) Safe::rdo access restrictions, and inject and execute arbitrary code, via vectors involving implicitly called methods and implicitly blessed objects, as demonstrated by the (a) DESTROY and (b) AUTOLOAD methods, related to "automagic methods."

Source: NVD (National Vulnerability Database)

CVSS Information

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Type

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Title

Perl Safe模块安全漏洞

Source: CNNVD (China National Vulnerability Database)

Vulnerability Description

Perl是美国程序员拉里-沃尔（Larry Wall）所研发的一种免费且功能强大的跨平台编程语言。Safe（又名Safe.pm）是其中的一个安全模块。 Perl Safe模块2.24及之前版本中存在安全漏洞。攻击者可利用该漏洞绕过Safe::reval和Safe::rdo访问限制，注入并执行任意代码。

Source: CNNVD (China National Vulnerability Database)

CVSS Information

N/A

Source: CNNVD (China National Vulnerability Database)

Vulnerability Type

N/A

Source: CNNVD (China National Vulnerability Database)

Affected Products

Vendor	Product	Affected Versions	CPE	Subscribe
-	n/a	n/a	-

II. Public POCs for CVE-2010-1168

#	POC Description	Source Link	Shenlong Link

AI-Generated POCPremium

No public POC found.

III. Intelligence Information for CVE-2010-1168

请登录查看更多情报信息。

http://blogs.perl.org/users/rafael_garcia-suarez/2010/03/new-safepm-fixes-security-hole.htmlx_refsource_CONFIRM
http://kb.juniper.net/InfoCenter/index?page=content&id=JSA10705x_refsource_CONFIRM
http://cpansearch.perl.org/src/RGARCIA/Safe-2.27/Changesx_refsource_CONFIRM
https://bugzilla.redhat.com/show_bug.cgi?id=576508x_refsource_CONFIRM
http://blogs.sun.com/security/entry/cve_2010_1168_vulnerability_inx_refsource_CONFIRM
http://kb.juniper.net/InfoCenter/index?page=content&id=JSA10735x_refsource_CONFIRM
http://secunia.com/advisories/42402third-party-advisoryx_refsource_SECUNIA
http://secunia.com/advisories/40049third-party-advisoryx_refsource_SECUNIA
http://secunia.com/advisories/40052third-party-advisoryx_refsource_SECUNIA
http://securitytracker.com/id?1024062vdb-entryx_refsource_SECTRACK
http://www.vupen.com/english/advisories/2010/3075vdb-entryx_refsource_VUPEN
http://www.redhat.com/support/errata/RHSA-2010-0458.htmlvendor-advisoryx_refsource_REDHAT
http://www.mandriva.com/security/advisories?name=MDVSA-2010:116vendor-advisoryx_refsource_MANDRIVA
http://www.redhat.com/support/errata/RHSA-2010-0457.htmlvendor-advisoryx_refsource_REDHAT
http://www.mandriva.com/security/advisories?name=MDVSA-2010:115vendor-advisoryx_refsource_MANDRIVA
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A9807vdb-entrysignaturex_refsource_OVAL
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A7424vdb-entrysignaturex_refsource_OVAL
oss-security - CVE-2010-1974 reject request (dupe of CVE-2010-1168) and CVE-2010-1447 description modification requestmailing-listx_refsource_MLIST
https://nvd.nist.gov/vuln/detail/CVE-2010-1168

Same Patch Batch · n/a · 2010-06-21 · 21 CVEs total

CVE-2010-2350		Ziproxy PNG解码器堆缓冲区溢出漏洞
CVE-2010-2345		OdCMS跨站请求伪造漏洞
CVE-2010-2344		OdCMS 多个跨站脚本攻击漏洞
CVE-2010-2343		Dennisre D.R. Software Audio Converter栈缓冲区溢出漏洞
CVE-2010-2342		DMXReady Online Notebook Manager 'onlinenotebookmanager.asp' SQL注入漏洞
CVE-2010-1622		Spring Framework 代码注入漏洞
CVE-2010-0542		Apple CUPS texttops过滤器空指针引用漏洞
CVE-2010-2353		Drupal Content Construction Kit模块Node Reference功能权限许可和访问控制漏洞
CVE-2010-2352		Drupal Content Construction Kit模块Node Reference功能输入验证漏洞
CVE-2010-2351		Novell Netware SMB报文远程栈溢出漏洞
CVE-2010-2354		Pilot Group eLMS Pro 'subscribe.php' SQL注入漏洞
CVE-2010-2349		Timhillone H264WebCam资源管理错误漏洞
CVE-2010-2348		Freesoftwaretoolbox Batch Audio Converter Lite栈缓冲区溢出漏洞
CVE-2010-2347		SAP J2EE Engine Core和Server Core Telnet接口权限许可和访问控制漏洞
CVE-2010-1958		Drupal FileField模块多个HTML注入漏洞
CVE-2010-2359		ActiveWebSoftwares.com eWebquiz 'eWebQuiz.asp'SQL注入漏洞
CVE-2010-2358		Jeffkilroy Nakid CMS 'modules/catalog/upload_photo.php'PHP远程文件包含漏洞
CVE-2010-2357		Eicra Real Estate Script 'index.php' SQL注入漏洞
CVE-2010-2356		Pilot Group eLMS Pro 'subscribe.php'跨站脚本攻击漏洞
CVE-2010-2355		Pilot Group eLMS Pro 'error.php'跨站脚本攻击漏洞

IV. Related Vulnerabilities

Same product: n/a

Same vendor: n/a

V. Comments for CVE-2010-1168

No comments yet

Goal Reached Thanks to every supporter — we hit 100%!

CVE-2010-1168

I. Basic Information for CVE-2010-1168

Vulnerability Information

Vulnerability Title

Vulnerability Description

CVSS Information

Vulnerability Type

Vulnerability Title

Vulnerability Description

CVSS Information

Vulnerability Type

Affected Products

II. Public POCs for CVE-2010-1168

III. Intelligence Information for CVE-2010-1168

Same Patch Batch · n/a · 2010-06-21 · 21 CVEs total

IV. Related Vulnerabilities

V. Comments for CVE-2010-1168

Leave a comment