2.6

CVE-2004-0452

Race condition in the rmtree function in the File::Path module in Perl 5.6.1 and 5.8.4 sets read/write permissions for the world, which allows local users to delete arbitrary files and directories, and possibly read files and directories, via a symlink attack.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
Larry WallPerl Version5.6.1
Larry WallPerl Version5.8.4
Zu dieser CVE wurde keine Warnung gefunden.
EPSS Metriken
Typ Quelle Score Percentile
EPSS FIRST.org 0.41% 0.322
CVSS Metriken
Quelle Base Score Exploit Score Impact Score Vector String
nvd@nist.gov 2.6 1.9 4.9
AV:L/AC:H/Au:N/C:N/I:P/A:P
Es wurden noch keine Informationen zu CWE veröffentlicht.
http://fedoranews.org/updates/FEDORA--.shtml
ftp://patches.sgi.com/support/free/security/advisories/20060101-01-U
http://marc.info/?l=bugtraq&m=110547693019788&w=2
http://secunia.com/advisories/12991
http://secunia.com/advisories/18517
http://secunia.com/advisories/55314
http://www.debian.org/security/2004/dsa-620
Patch
Vendor Advisory
http://www.gentoo.org/security/en/glsa/glsa-200501-38.xml
Patch
Vendor Advisory
http://www.redhat.com/support/errata/RHSA-2005-103.html
Patch
Vendor Advisory
http://www.redhat.com/support/errata/RHSA-2005-105.html
http://www.securityfocus.com/bid/12072
https://exchange.xforce.ibmcloud.com/vulnerabilities/18650
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A9938
https://www.ubuntu.com/usn/usn-44-1/