CVE-2012-6142

Name of the Vulnerable Software and Affected Versions HTML::EP module versions 0.2011

Description The issue arises from the improper use of the Storable::thaw function in the Session::Cookie component of the HTML::EP module for Perl. This allows remote attackers to execute arbitrary code via a crafted request that is not properly handled when deserialized.

Recommendations For HTML::EP module version 0.2011, consider disabling the use of the Session::Cookie component until a patch is available. Restrict access to the Storable::thaw function to minimize the risk of exploitation. Avoid using the Session::Cookie component in the HTML::EP module until the issue is resolved.