2 matches found
CVE-2008-5302
CVE-2008-5302 affects Perl 5.8.8 and 5.10.0 via the rmtree function in File::Path (lib/File/Path.pm), with a race condition that could let local users create arbitrary setuid binaries through a symlink attack. Affected versions are noted as 1.08 and 2.07; this is described as a regression relativ...
CVE-2008-5303
Race condition in the rmtree function in File::Path 1.08 lib/File/Path.pm in Perl 5.8.8 allows local users to to delete arbitrary files via a symlink attack, a different vulnerability than CVE-2005-0448, CVE-2004-0452, and CVE-2008-2827. NOTE: this is a regression error related to CVE-2005-0448. ...