1.2

CVE-2005-0448

Race condition in the rmtree function in File::Path.pm in Perl before 5.8.4 allows local users to create arbitrary setuid binaries in the tree being deleted, a different vulnerability than CVE-2004-0452.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
Larry WallPerl Version5.8.0
Larry WallPerl Version5.8.1
Larry WallPerl Version5.8.3
Larry WallPerl Version5.8.4
Zu dieser CVE wurde keine Warnung gefunden.
EPSS Metriken
Typ Quelle Score Percentile
EPSS FIRST.org 0.39% 0.303
CVSS Metriken
Quelle Base Score Exploit Score Impact Score Vector String
nvd@nist.gov 1.2 1.9 2.9
AV:L/AC:H/Au:N/C:N/I:P/A:N
Es wurden noch keine Informationen zu CWE veröffentlicht.
http://fedoranews.org/updates/FEDORA--.shtml
ftp://patches.sgi.com/support/free/security/advisories/20060101-01-U
http://secunia.com/advisories/18517
http://secunia.com/advisories/55314
http://www.gentoo.org/security/en/glsa/glsa-200501-38.xml
Patch
Vendor Advisory
http://distro.conectiva.com.br/atualizacoes/?id=a&anuncio=001056
http://secunia.com/advisories/18075
http://www.redhat.com/support/errata/RHSA-2005-881.html
http://secunia.com/advisories/14531
http://secunia.com/advisories/17079
http://www.debian.org/security/2005/dsa-696
Patch
Vendor Advisory
http://www.mandriva.com/security/advisories?name=MDKSA-2005:079
http://www.redhat.com/support/errata/RHSA-2005-674.html
http://www.securityfocus.com/advisories/8704
http://www.securityfocus.com/bid/12767
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10475
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A728
https://usn.ubuntu.com/94-1/