10 matches found
EUVD-2000-0699
Malware in sbrugna...
Debian DSA-431-1 : perl - information leak
Paul Szabo discovered a number of similar bugs in suidperl, a helper program to run perl scripts with setuid privileges. By exploiting these bugs, an attacker could abuse suidperl to discover information about files such as testing for their existence and some of their permissions that should not...
SUIDPerl 5.6 - Information Disclosure
SUIDPerl 5.6 - Information Disclosure source: https://www.securityfocus.com/bid/6282/info An information disclosure vulnerability has been reported for SuidPerl. Reportedly, it is possible for an attacker to determine whether files exist in non-accessible directories. An attacker can exploit this...
CVE-2000-0703
suidperl aka sperl does not properly cleanse the escape sequence "!" before calling /bin/mail to send an error report, which allows local users to gain privileges by setting the "interactive" environmental variable and calling suidperl with a filename that contains the escape sequence...
CVE-2000-0703
CVE-2000-0703 affects suidperl (sperl). The vulnerability arises because suidperl does not properly cleanse the escape sequence "~!" before invoking /bin/mail to report errors. This enables local users to gain privileges by setting the interactive environmental variable and running suidperl with ...
SUIDPerl 5.00503 - Mail Shell Escape (2)
SUIDPerl 5.00503 - Mail Shell Escape 2 source: https://www.securityfocus.com/bid/1547/info The interaction between some security checks performed by suidperl, the setuid version of perl, and the /bin/mail program creates a scenario that allows local malicious users to execute commands with root...
SUIDPerl 5.00503 - Mail Shell Escape (1)
SUIDPerl 5.00503 - Mail Shell Escape 1 source: https://www.securityfocus.com/bid/1547/info The interaction between some security checks performed by suidperl, the setuid version of perl, and the /bin/mail program creates a scenario that allows local malicious users to execute commands with root...
SUIDPerl 5.00503 - Mail Shell Escape (1)
source: https://www.securityfocus.com/bid/1547/info The interaction between some security checks performed by suidperl, the setuid version of perl, and the /bin/mail program creates a scenario that allows local malicious users to execute commands with root privileges. The suidperl program perform...
CVE-1999-0034
Buffer overflow in suidperl sperl, Perl 4.x and 5.x...
FreeBSD-SA-96:12.perl
-----BEGIN PGP SIGNED MESSAGE----- ============================================================================= FreeBSD-SA-96:12 Security Advisory FreeBSD, Inc. Topic: security compromise from perl suidperl utility Category: core and ports Module: perl Announced: 1996-06-28 Affects: FreeBSD 2.0,...