9 matches found
Fedora Core 10 FEDORA-2009-7680 (perl)
The remote host is missing an update to perl announced via advisory FEDORA-2009-7680. Note: This VT has been deprecated and is therefore no longer functional. SPDX-FileCopyrightText: 2009 E-Soft Inc. Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the...
openSUSE Security Update : perl (perl-101)
Specially crafted regular expressions could crash perl CVE-2008-1927. Insufficient symlink checks in the File::Path could result in wrong file permissions CVE-2008-2827. Additionally problem in the CGI module was fixed that could result in an endless loop if uploads were cancelled. %NASLMINLEVEL...
Mandriva Linux Security Advisory : perl (MDVSA-2008:165)
The rmtree function in lib/File/Path.pm in Perl 5.10 does not properly check permissions before performing a chmod, which allows local users to modify the permissions of arbitrary files via a symlink attack. The updated packages have been patched to fix this. %NASLMINLEVEL 70300 C Tenable Network...
Race condition
Race condition in the rmtree function in File::Path 1.08 and 2.07 lib/File/Path.pm in Perl 5.8.8 and 5.10.0 allows local users to create arbitrary setuid binaries via a symlink attack, a different vulnerability than CVE-2005-0448, CVE-2004-0452, and CVE-2008-2827. NOTE: this is a regression error...
Fedora 9 : perl-5.10.0-27.fc9 (2008-5739)
CVE-2008-2827 perl: insecure use of chmod in rmtree Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues...
Perl rmtree()函数本地不安全权限漏洞
BUGTRAQ ID: 29902 CVECAN ID: CVE-2008-2827 Perl是一种免费且功能强大的编程语言。 Perl的lib/File/Path.pm文件中的rmtree函数在执行chmod时没有正确地检查权限: my $nperm = $perm & 07777 | 0600; if $nperm != $perm and not chmod $nperm, $root if $ForceWriteable error$arg, "cannot make file writeable", $canon;...
CVE-2008-2827
The rmtree function in lib/File/Path.pm in Perl 5.10 does not properly check permissions before performing a chmod, which allows local users to modify the permissions of arbitrary files via a symlink attack, a different vulnerability than CVE-2005-0448 and CVE-2004-0452...
CVE-2008-2827
The rmtree function in lib/File/Path.pm in Perl 5.10 does not properly check permissions before performing a chmod, which allows local users to modify the permissions of arbitrary files via a symlink attack, a different vulnerability than CVE-2005-0448 and CVE-2004-0452...
CVE-2008-2827
CVE-2008-2827 involves the rmtree function in File::Path.pm of Perl 5.10. The description indicates a permissions check flaw before performing chmod, enabling local users to modify the permissions of arbitrary files via a symlink attack. This is a race-condition/permissions bug in the rmtree path...