Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
cvelistMitreCVELIST:CVE-2008-2827
HistoryJun 23, 2008 - 7:00 p.m.

CVE-2008-2827

2008-06-2319:00:00
mitre
www.cve.org

5.9 Medium

AI Score

Confidence

Low

0.001 Low

EPSS

Percentile

26.6%

JSON

The rmtree function in lib/File/Path.pm in Perl 5.10 does not properly check permissions before performing a chmod, which allows local users to modify the permissions of arbitrary files via a symlink attack, a different vulnerability than CVE-2005-0448 and CVE-2004-0452.

Related

prion 3
cve 5
debiancve 5
ubuntucve 5
nvd 5
openvas 30
cvelist 4
osv 3
nessus 21
gentoo 1
securityvulns 2
debian 5
freebsd 3
ubuntu 2
fedora 3
redhat 4
seebug 1
centos 2
oraclelinux 1
prion
prion
Design/Logic Flaw
2008-06-23 19:41:00
Race condition
2008-12-01 17:30:00
Race condition
2008-12-01 17:30:00
cve
cve
CVE-2008-2827
2008-06-23 19:41:00
CVE-2005-0448
2005-05-02 04:00:00
CVE-2008-5302
2008-12-01 17:30:01
debiancve
debiancve
CVE-2008-2827
2008-06-23 19:41:00
CVE-2008-5303
2008-12-01 17:30:01
CVE-2005-0448
2005-05-02 04:00:00
ubuntucve
ubuntucve
CVE-2008-2827
2008-06-23 00:00:00
CVE-2005-0448
2005-05-02 00:00:00
CVE-2008-5302
2008-12-01 00:00:00
nvd
nvd
CVE-2008-2827
2008-06-23 19:41:00
CVE-2005-0448
2005-05-02 04:00:00
CVE-2008-5302
2008-12-01 17:30:01
openvas
openvas
FreeBSD Ports: perl
2009-02-13 00:00:00
FreeBSD Ports: perl
2009-02-13 00:00:00
FreeBSD Ports: p5-File-Path
2009-01-07 00:00:00
cvelist
cvelist
CVE-2005-0448
2005-03-12 05:00:00
CVE-2008-5302
2008-12-01 17:00:00
CVE-2008-5303
2008-12-01 17:00:00
osv
osv
perl - privilege escalation
2008-12-03 00:00:00
perl - design flaw
2005-03-22 00:00:00
perl - insecure temporary files / directories
2004-12-30 00:00:00
nessus
nessus
GLSA-200501-38 : Perl: rmtree and DBI tmpfile vulnerabilities
2005-02-14 00:00:00
Debian DSA-1678-1 : perl - design flaws
2008-12-04 00:00:00
Fedora 9 : perl-5.10.0-27.fc9 (2008-5739)
2008-07-02 00:00:00
gentoo
gentoo
Perl: rmtree and DBI tmpfile vulnerabilities
2005-01-26 00:00:00
securityvulns
securityvulns
[SECURITY] [DSA 1678-1] New perl packages fix privilege escalation
2008-12-04 00:00:00
Perl symbolic links race conditions
2008-12-04 00:00:00
debian
debian
[SECURITY] [DSA 1678-1] New perl packages fix privilege escalation
2008-12-03 06:15:24
[SECURITY] [DSA 696-1] New perl packages fix privilege escalation
2005-03-22 10:56:32
[SECURITY] [DSA 620-1] New perl packages fix several vulnerabilities
2004-12-30 16:50:22
freebsd
freebsd
perl -- File::Path insecure file/directory permissions
2004-12-30 00:00:00
p5-File-Path -- rmtree allows creation of setuid files
2008-11-28 00:00:00
perl -- Directory Permissions Race Condition
2005-03-09 00:00:00
ubuntu
ubuntu
perl information leak
2004-12-21 00:00:00
Perl vulnerability
2005-03-09 00:00:00
fedora
fedora
[SECURITY] Fedora 9 Update: perl-5.10.0-27.fc9
2008-07-26 05:55:48
[SECURITY] Fedora 9 Update: perl-5.10.0-27.fc9
2008-06-26 08:33:28
[SECURITY] Fedora 10 Update: perl-5.10.0-73.fc10
2009-07-16 07:33:06
redhat
redhat
(RHSA-2005:674) perl security update
2005-10-05 00:00:00
(RHSA-2005:105) perl security update
2005-02-07 00:00:00
(RHSA-2005:103) perl security update
2005-02-15 00:00:00
seebug
seebug
Perl rmtree()函数本地不安全权限漏洞
2008-06-25 00:00:00
centos
centos
perl security update
2005-10-05 16:18:28
perl security update
2005-12-20 23:33:21
oraclelinux
oraclelinux
perl security update
2010-06-07 00:00:00

5.9 Medium

AI Score

Confidence

Low

0.001 Low

EPSS

Percentile

26.6%

JSON
Related for CVELIST:CVE-2008-2827
prion3cve5debiancve5ubuntucve5nvd5openvas30cvelist4osv3nessus21gentoo1securityvulns2debian5freebsd3ubuntu2fedora3redhat4seebug1centos2oraclelinux1