Lucene search
K

6 matches found

Cvelist
Cvelist
added 2007/10/20 10:0 a.m.29 views

CVE-2003-1426

Openwebmail in cPanel 5.0, when run using suid Perl, adds the directory in the SCRIPTFILENAME environment variable to Perl's @INC include array, which allows local users to execute arbitrary code by modifying SCRIPTFILENAME to reference a directory containing a malicious openwebmail-shared.pl...

7.2AI score0.00463EPSS
Exploits1References3
CVE
CVE
added 2007/10/20 10:0 a.m.51 views

CVE-2003-1426

Openwebmail in cPanel 5.0 (when run with suid Perl) writes the SCRIPT_FILENAME directory into Perl's @INC, enabling local users to run arbitrary code by pointing SCRIPT_FILENAME to a directory containing a malicious openwebmail-shared.pl. This CVE (CVE-2003-1426) describes a local-privilege-vecto...

3.3CVSS7.6AI score0.00463EPSS
Exploits1References3Affected Software1
seebug.org
seebug.org
added 2006/10/28 12:0 a.m.10 views

suid_perl 5.001 vulnerability

No description provided by source. !/usr/bin/suidperl -U $ENVPATH="/bin:/usr/bin"; $=0;$=0; exec"/bin/bash";...

7.1AI score
Exploits0
NVD
NVD
added 2003/12/31 5:0 a.m.16 views

CVE-2003-1426

Openwebmail in cPanel 5.0, when run using suid Perl, adds the directory in the SCRIPTFILENAME environment variable to Perl's @INC include array, which allows local users to execute arbitrary code by modifying SCRIPTFILENAME to reference a directory containing a malicious openwebmail-shared.pl...

3.3CVSS7.2AI score0.00463EPSS
Exploits1References3
securityvulns
securityvulns
added 2000/08/08 12:0 a.m.72 views

re, suidperl; more

hi, yes, i hoped to announce this bug to the perl-developers before it came public; but i think they read BQ ... Michal ... : So far, there are more security-releated apps which use /bin/mail for logging Once I was also fallen into thinking that it can be secure, until Dave Dittrich pointed that ...

0.4AI score
Exploits0
Exploit DB
Exploit DB
added 1996/06/01 12:0 a.m.34 views

suid_perl 5.001 - Command Execution

!/usr/bin/suidperl -U $ENVPATH="/bin:/usr/bin"; $=0;$=0; exec"/bin/bash"; milw0rm.com 1996-06-01...

7.4AI score
Exploits0
Rows per page
Query Builder