Lucene search
K

9 matches found

OpenVAS
OpenVAS
added 2009/07/29 12:0 a.m.22 views

Fedora Core 10 FEDORA-2009-7680 (perl)

The remote host is missing an update to perl announced via advisory FEDORA-2009-7680. Note: This VT has been deprecated and is therefore no longer functional. SPDX-FileCopyrightText: 2009 E-Soft Inc. Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the...

6.8CVSS7.7AI score0.07441EPSS
Exploits5References3
Tenable Nessus
Tenable Nessus
added 2009/07/21 12:0 a.m.25 views

openSUSE Security Update : perl (perl-101)

Specially crafted regular expressions could crash perl CVE-2008-1927. Insufficient symlink checks in the File::Path could result in wrong file permissions CVE-2008-2827. Additionally problem in the CGI module was fixed that could result in an endless loop if uploads were cancelled. %NASLMINLEVEL...

5CVSS8.2AI score0.03153EPSS
Exploits3References5
Tenable Nessus
Tenable Nessus
added 2009/04/23 12:0 a.m.23 views

Mandriva Linux Security Advisory : perl (MDVSA-2008:165)

The rmtree function in lib/File/Path.pm in Perl 5.10 does not properly check permissions before performing a chmod, which allows local users to modify the permissions of arbitrary files via a symlink attack. The updated packages have been patched to fix this. %NASLMINLEVEL 70300 C Tenable Network...

4.6CVSS8.3AI score0.0085EPSS
Exploits2References1
Prion
Prion
added 2008/12/01 5:30 p.m.24 views

Race condition

Race condition in the rmtree function in File::Path 1.08 and 2.07 lib/File/Path.pm in Perl 5.8.8 and 5.10.0 allows local users to create arbitrary setuid binaries via a symlink attack, a different vulnerability than CVE-2005-0448, CVE-2004-0452, and CVE-2008-2827. NOTE: this is a regression error...

6.9CVSS6.1AI score0.0085EPSS
Exploits5References22
Tenable Nessus
Tenable Nessus
added 2008/07/02 12:0 a.m.21 views

Fedora 9 : perl-5.10.0-27.fc9 (2008-5739)

CVE-2008-2827 perl: insecure use of chmod in rmtree Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues...

4.6CVSS8.1AI score0.0085EPSS
Exploits2References4
seebug.org
seebug.org
added 2008/06/25 12:0 a.m.39 views

Perl rmtree()函数本地不安全权限漏洞

BUGTRAQ ID: 29902 CVECAN ID: CVE-2008-2827 Perl是一种免费且功能强大的编程语言。 Perl的lib/File/Path.pm文件中的rmtree函数在执行chmod时没有正确地检查权限: my $nperm = $perm & 07777 | 0600; if $nperm != $perm and not chmod $nperm, $root if $ForceWriteable error$arg, "cannot make file writeable", $canon;...

4.6CVSS0.1AI score0.0085EPSS
Exploits2
UbuntuCve
UbuntuCve
added 2008/06/23 7:41 p.m.32 views

CVE-2008-2827

The rmtree function in lib/File/Path.pm in Perl 5.10 does not properly check permissions before performing a chmod, which allows local users to modify the permissions of arbitrary files via a symlink attack, a different vulnerability than CVE-2005-0448 and CVE-2004-0452...

4.6CVSS7.3AI score0.0085EPSS
Exploits2References1
OSV
OSV
added 2008/06/23 7:41 p.m.6 views

CVE-2008-2827

The rmtree function in lib/File/Path.pm in Perl 5.10 does not properly check permissions before performing a chmod, which allows local users to modify the permissions of arbitrary files via a symlink attack, a different vulnerability than CVE-2005-0448 and CVE-2004-0452...

5.9AI score
Exploits0References11
CVE
CVE
added 2008/06/23 7:0 p.m.70 views

CVE-2008-2827

CVE-2008-2827 involves the rmtree function in File::Path.pm of Perl 5.10. The description indicates a permissions check flaw before performing chmod, enabling local users to modify the permissions of arbitrary files via a symlink attack. This is a race-condition/permissions bug in the rmtree path...

4.6CVSS5.8AI score0.0085EPSS
Exploits2References11Affected Software1
Rows per page
Query Builder