CVE-2007-2996

Name of the Vulnerable Software and Affected Versions: perl.rte versions 5.8.0.10 through 5.8.0.95 on IBM AIX 5.2 perl.rte versions 5.8.2.10 through 5.8.2.50 on AIX 5.3

Description: The issue allows local users to gain privileges via unspecified vectors related to the installation and waiting for a legitimate user to execute a binary that ships with Perl.

Recommendations: For perl.rte versions 5.8.0.10 through 5.8.0.95 on IBM AIX 5.2, update to a version outside of this range to resolve the issue. For perl.rte versions 5.8.2.10 through 5.8.2.50 on AIX 5.3, update to a version outside of this range to resolve the issue. As a temporary workaround, consider restricting access to the binaries that ship with Perl to minimize the risk of exploitation.