[Forgot Password]
Login  Register Subscribe

30479

 
 

423868

 
 

250039

 
 

909

 
 

195882

 
 

282

 
Paid content will be excluded from the download.


Download | Alert*
CVE
view JSON

CVE-2005-0156Date: (C)2005-02-07   (M)2023-12-22


Buffer overflow in the PerlIO implementation in Perl 5.8.0, when installed with setuid support (sperl), allows local users to execute arbitrary code by setting the PERLIO_DEBUG variable and executing a Perl script whose full pathname contains a long directory tree.

CVSS Score and Metrics +CVSS Score and Metrics -

CVSS V2 Severity:
CVSS Score : 2.1
Exploit Score: 3.9
Impact Score: 2.9
 
CVSS V2 Metrics:
Access Vector: LOCAL
Access Complexity: LOW
Authentication: NONE
Confidentiality: NONE
Integrity: PARTIAL
Availability: NONE
  
Reference:
BID-12426
SECUNIA-14120
2005-0003
http://marc.info/?l=bugtraq&m=110737149402683&w=2
http://marc.info/?l=full-disclosure&m=110779721503111&w=2
SECUNIA-55314
CLSA-2006:1056
FLSA-2006:152845
GLSA-200502-13
MDKSA-2005:031
RHSA-2005:103
RHSA-2005:105
http://www.digitalmunition.com/DMA%5B2005-0131b%5D.txt
oval:org.mitre.oval:def:10803
perl-perliodebug-bo(19208)

CPE    14
cpe:/o:suse:suse_linux:9.2
cpe:/o:suse:suse_linux:9.0
cpe:/o:suse:suse_linux:8.1
cpe:/o:suse:suse_linux:9.1
...

© SecPod Technologies