86 matches found
Multiple Security Bypass Vulnerabilities in File-Path Module
File-Path is a module for creating and removing directory trees. A security vulnerability exists in the 'removetree' and 'rmtree' functions in versions of the File-Path module prior to 2.13. An attacker can exploit this vulnerability to set the mode of arbitrary files...
Race condition
Race condition in the rmtree and removetree functions in the File-Path module before 2.13 for Perl allows attackers to set the mode on arbitrary files via vectors involving directory-permission loosening logic...
CVE-2017-6512
Race condition in the rmtree and removetree functions in the File-Path module before 2.13 for Perl allows attackers to set the mode on arbitrary files via vectors involving directory-permission loosening logic...
CVE-2017-6512
Race condition in the rmtree and removetree functions in the File-Path module before 2.13 for Perl allows attackers to set the mode on arbitrary files via vectors involving directory-permission loosening logic...
CVE-2017-6512
Race condition in the rmtree and removetree functions in the File-Path module before 2.13 for Perl allows attackers to set the mode on arbitrary files via vectors involving directory-permission loosening logic...
CVE-2017-6512
Race condition in the rmtree and removetree functions in the File-Path module before 2.13 for Perl allows attackers to set the mode on arbitrary files via vectors involving directory-permission loosening logic...
CVE-2017-6512
CVE-2017-6512 affects the Perl File-Path module prior to 2.13. A race condition in the rmtree and remove_tree functions can let an attacker loosen directory permissions to set the mode on arbitrary files. Impact is limited to permission changes on targeted files; no direct data-exfiltration vecto...
CVE-2017-6512
Race condition in the rmtree and removetree functions in the File-Path module before 2.13 for Perl allows attackers to set the mode on arbitrary files via vectors involving directory-permission loosening logic...
CVE-2017-6512
Race condition in the rmtree and removetree functions in the File-Path module before 2.13 for Perl allows attackers to set the mode on arbitrary files via vectors involving directory-permission loosening logic...
UBUNTU-CVE-2017-6512
Race condition in the rmtree and removetree functions in the File-Path module before 2.13 for Perl allows attackers to set the mode on arbitrary files via vectors involving directory-permission loosening logic...
PT-2018-17919 · Node.Js +2 · Node.Js +2
Name of the Vulnerable Software and Affected Versions: Node.js versions 4.x Description: The issue concerns a potential regular expression denial of service ReDoS vector in the 'path' module. This module is used for various path parsing functions, including path.dirname, path.extname, and...
Drupal Taxonomy Path Module Cross-Site Scripting Vulnerability
Drupal is written using the PHP language open source content management framework , which consists of a content management system and PHP development framework together . A cross-site scripting vulnerability exists in the Drupal Taxonomy Path module due to the program failing to properly filter...
CentOS Update for perl CESA-2010:0458 centos5 i386
The remote host is missing an update for the SPDX-FileCopyrightText: 2011 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription scriptxrefname:"URL",...
perl security update
CentOS Errata and Security Advisory CESA-2010:0458 Updated perl packages that fix multiple security issues are now available for Red Hat Enterprise Linux 5. The Red Hat Security Response Team has rated this update as having moderate security impact. Common Vulnerability Scoring System CVSS base...
RedHat Update for perl RHSA-2010:0458-02
Check for the Version of perl OpenVAS Vulnerability Test RedHat Update for perl RHSA-2010:0458-02 Authors: System Generated Check Copyright: Copyright c 2010 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under the terms o...
Moderate: Red Hat Security Advisory: perl security update
Updated perl packages that fix multiple security issues are now available for Red Hat Enterprise Linux 5. The Red Hat Security Response Team has rated this update as having moderate security impact. Common Vulnerability Scoring System CVSS base scores, which give detailed severity ratings, are...
Perl rmtree()函数本地不安全权限漏洞
BUGTRAQ ID: 29902 CVECAN ID: CVE-2008-2827 Perl是一种免费且功能强大的编程语言。 Perl的lib/File/Path.pm文件中的rmtree函数在执行chmod时没有正确地检查权限: my $nperm = $perm & 07777 | 0600; if $nperm != $perm and not chmod $nperm, $root if $ForceWriteable error$arg, "cannot make file writeable", $canon;...
security flaw
Race condition in the rmtree function in File::Path.pm in Perl before 5.8.4 allows local users to create arbitrary setuid binaries in the tree being deleted, a different vulnerability than CVE-2004-0452...
security flaw
Race condition in the rmtree function in File::Path.pm in Perl before 5.8.4 allows local users to create arbitrary setuid binaries in the tree being deleted, a different vulnerability than CVE-2004-0452...
DEBIAN-CVE-2005-0448
Race condition in the rmtree function in File::Path.pm in Perl before 5.8.4 allows local users to create arbitrary setuid binaries in the tree being deleted, a different vulnerability than CVE-2004-0452...