Oalders

**Name of the Vulnerable Software and Affected Versions** WWW::Mechanize::Cached versions prior to 2.00 **Description** When no explicit cache backend is used, the software creates a default Cache::FileCache in `/tmp/FileCache` with a directory umask of 000, resulting in a cache root and subdirectories with mode 0777 and no sticky bit. This allows a local attacker with write access to the cache tree to replace a victim's cache entry for a known URL with an arbitrary frozen HTTP::Response blob. When the victim performs a `get()` request for that URL, the system reads the entry using `Storable::thaw`. If the victim process has loaded any class with a side-effectful `STORABLE thaw`, `DESTROY`, or overload hook, this can lead to local response forgery and arbitrary code execution. **Recommendations** Update to version 2.00 or later.