Security Advisories (3)
CVE-2018-12015 (2018-06-12)

In Perl through 5.26.2, the Archive::Tar module allows remote attackers to bypass a directory-traversal protection mechanism, and overwrite arbitrary files, via an archive file containing a symlink and a regular file with the same name.

CVE-2007-4829 (2007-11-02)

Directory traversal vulnerability in the Archive::Tar Perl module 1.36 and earlier allows user-assisted remote attackers to overwrite arbitrary files via a TAR archive that contains a file whose name is an absolute path or has ".." sequences.

CVE-2016-1238 (2016-08-02)

'(1) cpan/Win32-File-Summary/bin/ptar, (2) cpan/Win32-File-Summary/bin/ptardiff, (3) cpan/Win32-File-Summary/bin/ptargrep, (4) cpan/CPAN/scripts/cpan, (5) cpan/Digest-SHA/shasum, (6) cpan/Encode/bin/enc2xs, (7) cpan/Encode/bin/encguess, (8) cpan/Encode/bin/piconv, (9) cpan/Encode/bin/ucmlint, (10) cpan/Encode/bin/unidump, (11) cpan/ExtUtils-MakeMaker/bin/instmodsh, (12) cpan/IO-Compress/bin/zipdetails, (13) cpan/JSON-PP/bin/json_pp, (14) cpan/Test-Harness/bin/prove, (15) dist/ExtUtils-ParseXS/lib/ExtUtils/xsubpp, (16) dist/Module-CoreList/corelist, (17) ext/Pod-Html/bin/pod2html, (18) utils/c2ph.PL, (19) utils/h2ph.PL, (20) utils/h2xs.PL, (21) utils/libnetcfg.PL, (22) utils/perlbug.PL, (23) utils/perldoc.PL, (24) utils/perlivp.PL, and (25) utils/splain.PL in Perl 5.x before 5.22.3-RC2 and 5.24 before 5.24.1-RC2 do not properly remove . (period) characters from the end of the includes directory array, which might allow local users to gain privileges via a Trojan horse module under the current working directory.'

NAME

Win32::File::Summary - Perl extension read property informations from MS compound files. It reads also property informations from \"normal\" files. (The Properties in OpenOffice documents are directly read from the meta.xml file using the explanations from the following http://books.evc-cit.info/ch02.php#document-description-fig http://books.evc-cit.info/pr01.php#who-should-read-section)

SYNOPSIS

use Win32::File::Summary;
my $Prop = Win32::File::Summary->new($file);

DESCRIPTION

The modul Win32::File::Summary can be used to get the summary informations from a MS compound file or normal (text) files. What are the summary information: For compound documents, e.g. Word, you can add Title, Author, Description and some other informations to the document. The same, but not all of them you can add also to normal (text) files. This informationes can be read and add in the Property Dialog under the Summary Tab. The module reads these informations.

FUNCTIONS

new(file)
This method is the constructor. The only parameter is the filename of the document which informations you want to get.
IsWin2000OrNT()
This method returns 1 if the operating system currently used is Windows NT/2000/XP otherwise  0.
IsStgFile()
This method returns 1 if that the file contains a storage object, otherwise 0.
Read()
This method reads the property set and returns a refernce to a hash which contain the informations.
GetError()
The GetError method returns the error message if there is one.

AUTHOR

Reinhard Pagitsch, <rpirpag@gmx.at>

SEE ALSO

perl.

Adding support for OpenOffice and Star Office documents.
Adding suport to write summary informations.

1 POD Error

The following errors were encountered while parsing the POD:

Around line 115:

Unknown directive: =TODO