Revision Date: | 2013-04-29 | Version: | 11 | Title: | Race condition in the rmtree function in the File::Path module in Perl 5.6.1 and 5.8.4 sets read/write permissions for the world, which allows local users to delete arbitrary files and directories, and possibly read files and directories, via a symlink attack. | Description: | Race condition in the rmtree function in the File::Path module in Perl 5.6.1 and 5.8.4 sets read/write permissions for the world, which allows local users to delete arbitrary files and directories, and possibly read files and directories, via a symlink attack. | Family: | unix | Class: | vulnerability | Status: | ACCEPTED | Reference(s): | CVE-2004-0452
| Platform(s): | CentOS Linux 3 CentOS Linux 4 Oracle Linux 4 Red Hat Enterprise Linux 3 Red Hat Enterprise Linux 4
| Product(s): | | Definition Synopsis | OS Section: RHEL3, CentOS3 RHEL3 or CentOS3
The operating system installed on the system is Red Hat Enterprise Linux 3
OR CentOS Linux 3.x
AND Configuration section
perl-suidperl is earlier than 2:5.8.0-89.10
OR perl is earlier than 2:5.8.0-89.10
OR perl-CPAN is earlier than 2:1.61-89.10
OR perl-CGI is earlier than 2:2.81-89.10
OR perl-DB_File is earlier than 2:1.804-89.10
OR OS Section: RHEL4, CentOS4, Oracle Linux 4
RHEL4, CentOS4 or Oracle Linux 4
The operating system installed on the system is Red Hat Enterprise Linux 4
OR CentOS Linux 4.x
OR Oracle Linux 4.x
AND Configuration section
perl-suidperl is earlier than 3:5.8.5-12.1.1
OR perl is earlier than 3:5.8.5-12.1
|
|