2 matches found
CVE-2006-2856
ActiveState ActivePerl 5.8.8.817 for Windows configures the site/lib directory with "Users" group permissions for changing files, which allows local users to gain privileges by creating a malicious sitecustomize.pl file in that directory. NOTE: The provenance of this information is unknown; the...
CVE-2006-2856
ActivePerl 5.8.8.817 for Windows is affected. The vulnerability arises from configuring the site/lib directory with write access to the Users group, allowing local users to create a malicious sitecustomize.pl and escalate privileges. The available sources describe the root cause and impact as loc...