A vulnerability has been reported in the Convert::UUlib module for Perl, which potentially can be exploited by malicious people to compromise a vulnerable system.
The vulnerability is caused due to a boundary error in a certain read operation. This can be exploited to cause a buffer overflow via a specially crafted parameter in an application using the vulnerable library.
Successful exploitation may allow execution of arbitrary code.
SOFTWARE:
Convert::UUlib 1.x (module for Perl)
SOLUTION:
Update to version 1.05 or later.
http://search.cpan.org/dist/Convert-UUlib/
PROVIDED AND/OR DISCOVERED BY:
The vendor credits Mark Martinec and Robert Lewis.
ORIGINAL ADVISORY:
http://www.gentoo.org/security/en/glsa/glsa-200504-26.xml
VERIFY ADVISORY:
http://secunia.com/advisories/15130/
Secunia Security Advisories
http://community.securityteam.us/article.php/20050504222602794