CVE-2012-6329

EPSS 81.97% · P99 Updated Feb 21, 2026

Get alerts for future matching vulnerabilitiesLog in to subscribe

I. Basic Information for CVE-2012-6329

Vulnerability Information

Have questions about the vulnerability? See if Shenlong's analysis helps!

Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.

Vulnerability Title

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Description

The _compile function in Maketext.pm in the Locale::Maketext implementation in Perl before 5.17.7 does not properly handle backslashes and fully qualified method names during compilation of bracket notation, which allows context-dependent attackers to execute arbitrary commands via crafted input to an application that accepts translation strings from users, as demonstrated by the TWiki application before 5.1.3, and the Foswiki application 1.0.x through 1.0.10 and 1.1.x through 1.1.6.

Source: NVD (National Vulnerability Database)

CVSS Information

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Type

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Title

Perl 任意代码执行漏洞

Source: CNNVD (China National Vulnerability Database)

Vulnerability Description

Perl 5.17.7之前版本中的Locale::Maketext实现中的_compile函数中存在漏洞，该漏洞源于在括号表示法编译过程中没有正确处理反斜线和完全限定的方法名。通过特制的输入到接收来自用户的翻译字符串的应用程序（如Twiki应用程序5.1.3版本以及Foswiki应用程序1.0.x至1.0.10和1.1.x至1.1.6版本），上下文相关的攻击者利用该漏洞执行任意代码。

Source: CNNVD (China National Vulnerability Database)

CVSS Information

N/A

Source: CNNVD (China National Vulnerability Database)

Vulnerability Type

N/A

Source: CNNVD (China National Vulnerability Database)

Shenlong Deep Dive — AI Deep Analysis

10-question deep dive: root cause, exploitation, mitigation, urgency. Read summary free, full version requires login.

Read summary Full analysis (login)

Affected Products

Vendor	Product	Affected Versions	CPE	Subscribe
-	n/a	n/a	-

II. Public POCs for CVE-2012-6329

#	POC Description	Source Link	Shenlong Link

AI-Generated POCPremium

No public POC found.

III. Intelligence Information for CVE-2012-6329

请登录查看更多情报信息。

🔗 http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=695224x_refsource_CONFIRM
🔗 http://perl5.git.perl.org/perl.git/commit/1735f6f53ca19f99c6e9e39496c486af323ba6a8x_refsource_CONFIRM
🔗 http://www.oracle.com/technetwork/topics/security/ovmbulletinjul2016-3090546.htmlx_refsource_CONFIRM
🔗 http://twiki.org/cgi-bin/view/Codev/SecurityAlert-CVE-2012-6329x_refsource_CONFIRM
🔗 http://kb.juniper.net/InfoCenter/index?page=content&id=JSA10735x_refsource_CONFIRM
🔗 https://wiki.mageia.org/en/Support/Advisories/MGASA-2013-0032x_refsource_CONFIRM
🔗 https://bugzilla.redhat.com/show_bug.cgi?id=884354x_refsource_MISC
🔗 http://perl5.git.perl.org/perl.git/blob/HEAD:/pod/perl5177delta.podx_refsource_CONFIRM
🔗 http://kb.juniper.net/InfoCenter/index?page=content&id=JSA10705x_refsource_CONFIRM
🔗 http://www.securityfocus.com/bid/56950vdb-entryx_refsource_BID
🔗 http://www.ubuntu.com/usn/USN-2099-1vendor-advisoryx_refsource_UBUNTU
🔗 http://www.mandriva.com/security/advisories?name=MDVSA-2013:113vendor-advisoryx_refsource_MANDRIVA
🔗 http://rhn.redhat.com/errata/RHSA-2013-0685.htmlvendor-advisoryx_refsource_REDHAT
🔗 http://openwall.com/lists/oss-security/2012/12/11/4mailing-listx_refsource_MLIST
🔗 http://code.activestate.com/lists/perl5-porters/187746/mailing-listx_refsource_MLIST
🔗 http://code.activestate.com/lists/perl5-porters/187763/mailing-listx_refsource_MLIST
🔗 http://sourceforge.net/mailarchive/message.php?msg_id=30219695mailing-listx_refsource_MLIST
https://nvd.nist.gov/vuln/detail/CVE-2012-6329

Same Patch Batch · n/a · 2013-01-04 · 22 CVEs total

CVE-2012-5581		LibTIFF 缓冲区错误漏洞
CVE-2012-6497		Ruby on Rail Authlogic gem 信息泄露漏洞
CVE-2012-6496		Ruby on Rails ‘ctive Record’组件SQL注入漏洞
CVE-2012-6090		SWI-Prolog 多个基于栈的缓冲区溢出漏洞
CVE-2012-6089		SWI-Prolog ‘canoniseFileName’函数多个栈溢出漏洞
CVE-2012-5976		多个Asterisk产品栈溢出拒绝服务漏洞
CVE-2012-5977		多个Asterisk产品拒绝服务漏洞
CVE-2012-6348		Centrify Deployment Manager 任意文件重写漏洞
CVE-2012-6330		TWiki和Foswiki ‘MAKETEXT’值多个安全漏洞
CVE-2012-5605		Red Hat CloudForms 不正确设置缓存文件读取漏洞
CVE-2012-5603		Red Hat CloudForms 安全绕过漏洞
CVE-2011-4316		Red Hat Enterprise Virtualization Manager SPICE锁屏竞争条件漏洞
CVE-2012-5516		Red Hat Enterprise Virtualization Manager 信息泄露漏洞
CVE-2012-4574		Red Hat CloudForms 管理员密码泄露漏洞
CVE-2012-4556		Red Hat Certificate System pki-tps系统TPS空证书搜索连接重置漏洞
CVE-2012-4555		Red Hat Certificate System pki-tps系统中断令牌格式操作拒绝服务漏洞
CVE-2012-4543		Red Hat Certificate System 多个跨站脚本漏洞
CVE-2012-3538		Red Hat CloudForms 密码泄露漏洞
CVE-2012-2696		Red Hat Enterprise Virtualization Manager 权限提升漏洞
CVE-2012-0861		Red Hat Enterprise Virtualization Manager 加密问题漏洞

Showing top 20 of 22 CVEs. View all on vendor page → →

IV. Related Vulnerabilities

Same product: n/a

Same vendor: n/a

V. Comments for CVE-2012-6329

No comments yet

Goal Reached Thanks to every supporter — we hit 100%!

CVE-2012-6329

I. Basic Information for CVE-2012-6329

Vulnerability Information

Vulnerability Title

Vulnerability Description

CVSS Information

Vulnerability Type

Vulnerability Title

Vulnerability Description

CVSS Information

Vulnerability Type

Shenlong Deep Dive — AI Deep Analysis

Affected Products

II. Public POCs for CVE-2012-6329

III. Intelligence Information for CVE-2012-6329

Same Patch Batch · n/a · 2013-01-04 · 22 CVEs total

IV. Related Vulnerabilities

V. Comments for CVE-2012-6329

Leave a comment