SUSE CVE-2005-0155

The PerlIO implementation in Perl 5.8.0, when installed with setuid support sperl, allows local users to create arbitrary files via the PERLIODEBUG variable...

FreeBSD : perl -- vulnerabilities in PERLIO_DEBUG handling (a5eb760a-753c-11d9-a36f-000a95bc6fae)

Kevin Finisterre discovered bugs in perl's I/O debug support : - The environmental variable PERLIODEBUG is honored even by the set-user-ID perl command usually named sperl or suidperl. As a result, a local attacker may be able to gain elevated privileges. CVE-2005-0155 - A buffer overflow may occ...

CVE-2005-0155

The PerlIO implementation in Perl 5.8.0, when installed with setuid support sperl, allows local users to create arbitrary files via the PERLIODEBUG variable...

security flaw

The PerlIO implementation in Perl 5.8.0, when installed with setuid support sperl, allows local users to create arbitrary files via the PERLIODEBUG variable...

CVE-2005-0155

The PerlIO implementation in Perl 5.8.0, when installed with setuid support sperl, allows local users to create arbitrary files via the PERLIODEBUG variable...

Setuid perl - PerlIO_Debug() Root Owned File Creation Privilege Escalation

Setuid perl - PerlIODebug Root Owned File Creation Privilege Escalation / Copyright Kevin Finisterre DISCLAIMER I am in no way responsible for your stupidity. DISCLAIMER I am in no way liable for any damages caused by compilation and or execution of this code. WARNING DO NOT RUN THIS UNLESS YOU...

Setuid perl - 'PerlIO_Debug()' Local Overflow

/ Copyright Kevin Finisterre Setuid perl PerlIODebug overflow Tested on Debian 3.1 perl-suid 5.8.4-5 11:07:20 corezion: who is tha man with tha masta plan? 11:07:36 corezion: a nigga with a buffer overrun 11:07:39 corezion: heh of course that is to the tune of...

Setuid perl PerlIO_Debug() root owned file creation

No description provided by source. / Copyright Kevin Finisterre DISCLAIMER I am in no way responsible for your stupidity. DISCLAIMER I am in no way liable for any damages caused by compilation and or execution of this code. WARNING DO NOT RUN THIS UNLESS YOU KNOW WHAT YOU ARE DOING WARNING...

Setuid perl PerlIO_Debug() root owned file creation

Exploit for linux platform in category local exploits =================================================== Setuid perl PerlIODebug root owned file creation =================================================== / Copyright Kevin Finisterre DISCLAIMER I am in no way responsible for your stupidity...

Setuid perl PerlIO_Debug() overflow

Exploit for linux platform in category local exploits =================================== Setuid perl PerlIODebug overflow =================================== / Copyright Kevin Finisterre Setuid perl PerlIODebug overflow Tested on Debian 3.1 perl-suid 5.8.4-5 11:07:20 corezion: who is tha man wit...

Setuid perl - PerlIO_Debug() Local Overflow

Setuid perl - PerlIODebug Local Overflow / Copyright Kevin Finisterre Setuid perl PerlIODebug overflow Tested on Debian 3.1 perl-suid 5.8.4-5 11:07:20 corezion: who is tha man with tha masta plan? 11:07:36 corezion: a nigga with a buffer overrun 11:07:39 corezion: heh of course that is to the tun...

Setuid perl - 'PerlIO_Debug()' Root Owned File Creation Privilege Escalation

/ Copyright Kevin Finisterre DISCLAIMER I am in no way responsible for your stupidity. DISCLAIMER I am in no way liable for any damages caused by compilation and or execution of this code. WARNING DO NOT RUN THIS UNLESS YOU KNOW WHAT YOU ARE DOING WARNING overwriting /etc/ld.so.preload can severl...

perl PERLIO_DEBUG privilege escalation

By using PERLIODEBUG variable it's possible to redirect debug output of suid application to any file. Oversized PERLIODEBUG causes buffer overflow...