Vulnerability CVE-2005-0448

Vulnerability Name:

CVE-2005-0448 (CCN-19644)

Assigned:

2005-03-09

Published:

2005-03-09

Updated:

2018-10-03

Summary:

Race condition in the rmtree function in File::Path.pm in Perl before 5.8.4 allows local users to create arbitrary setuid binaries in the tree being deleted, a different vulnerability than CVE-2004-0452.

CVSS v3 Severity:

2.9 Low (CCN CVSS v3.1 Vector: CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:N/I:L/A:N)

Exploitability Metrics:	Attack Vector (AV): Local Attack Complexity (AC): High Privileges Required (PR): None User Interaction (UI): None
Scope:	Scope (S): Unchanged
Impact Metrics:	Confidentiality (C): None Integrity (I): Low Availibility (A): None

CVSS v2 Severity:

1.2 Low (CVSS v2 Vector: AV:L/AC:H/Au:N/C:N/I:P/A:N)

Exploitability Metrics:	Access Vector (AV): Local Access Complexity (AC): High Authentication (Au): None
Impact Metrics:	Confidentiality (C): None Integrity (I): Partial Availibility (A): None

1.2 Low (CCN CVSS v2 Vector: AV:L/AC:H/Au:N/C:N/I:P/A:N)

Exploitability Metrics:	Access Vector (AV): Local Access Complexity (AC): High Athentication (Au): None
Impact Metrics:	Confidentiality (C): None Integrity (I): Partial Availibility (A): None

Vulnerability Type:

CWE-Other

Vulnerability Consequences:

Gain Privileges

References:

Source: SGI
Type: UNKNOWN
20060101-01-U

Source: CCN
Type: Full-Disclosure Mailing List, Wed Mar 09 2005 - 06:31:27 CST
perl vulnerability

Source: MITRE
Type: CNA
CVE-2005-0448

Source: CONECTIVA
Type: UNKNOWN
CLSA-2006:1056

Source: FEDORA
Type: UNKNOWN
FLSA-2006:152845

Source: CCN
Type: RHSA-2005-674
perl security update

Source: CCN
Type: RHSA-2005-881
perl security update

Source: CCN
Type: SA14531
Perl "File::Path::rmtree" Directory Permissions Race Condition

Source: SECUNIA
Type: UNKNOWN
14531

Source: SECUNIA
Type: UNKNOWN
17079

Source: CCN
Type: SA18075
Red Hat update perl

Source: SECUNIA
Type: UNKNOWN
18075

Source: SECUNIA
Type: UNKNOWN
18517

Source: CCN
Type: SA55314
Oracle Solaris Perl Multiple Vulnerabilities

Source: SECUNIA
Type: UNKNOWN
55314

Source: CCN
Type: ASA-2006-008
perl security update (RHSA-2005-881)

Source: CCN
Type: ASA-2006-064
HP-UX Running perl Local Unauthorized Elevated Privileges (HPSBUX01208)

Source: CCN
Type: CIAC INFORMATION BULLETIN P-157
Perl

Source: DEBIAN
Type: Patch, Vendor Advisory
DSA-696

Source: DEBIAN
Type: DSA-1678
perl -- design flaws

Source: DEBIAN
Type: DSA-696
perl -- design flaw

Source: CCN
Type: GLSA-200501-38
Perl: rmtree and DBI tmpfile vulnerabilities

Source: GENTOO
Type: Patch, Vendor Advisory
GLSA-200501-38

Source: MANDRIVA
Type: UNKNOWN
MDKSA-2005:079

Source: REDHAT
Type: UNKNOWN
RHSA-2005:674

Source: REDHAT
Type: UNKNOWN
RHSA-2005:881

Source: HP
Type: UNKNOWN
HPSBUX01208

Source: BID
Type: UNKNOWN
12767

Source: CCN
Type: BID-12767
Perl 'rmdir()' Local Race Condition Privilege Escalation Vulnerability

Source: CCN
Type: TLSA-2005-45
Race condition

Source: CCN
Type: USN-94-1
Perl vulnerability

Source: XF
Type: UNKNOWN
perl-rmtree-race-condition(19644)

Source: OVAL
Type: UNKNOWN
oval:org.mitre.oval:def:10475

Source: OVAL
Type: UNKNOWN
oval:org.mitre.oval:def:728

Source: UBUNTU
Type: UNKNOWN
USN-94-1

Vulnerable Configuration:

Configuration 1:

cpe:/a:larry_wall:perl:5.8.0:*:*:*:*:*:*:*

OR cpe:/a:larry_wall:perl:5.8.1:*:*:*:*:*:*:*

OR cpe:/a:larry_wall:perl:5.8.3:*:*:*:*:*:*:*

OR cpe:/a:larry_wall:perl:5.8.4:*:*:*:*:*:*:*

Configuration RedHat 1:

cpe:/o:redhat:enterprise_linux:*:*:*:*:*:*:*:*

Configuration CCN 1:

cpe:/a:larry_wall:perl:5.3:*:*:*:*:*:*:*

AND

cpe:/o:debian:debian_linux:3.0:*:*:*:*:*:*:*

OR cpe:/o:gentoo:linux:*:*:*:*:*:*:*:*

OR cpe:/o:mandrakesoft:mandrake_linux_corporate_server:2.1:*:*:*:*:*:*:*

OR cpe:/o:redhat:enterprise_linux:3::ws:*:*:*:*:*

OR cpe:/o:redhat:enterprise_linux:3::es:*:*:*:*:*

OR cpe:/o:redhat:enterprise_linux:3::as:*:*:*:*:*

OR cpe:/o:mandrakesoft:mandrake_linux:10.0:*:*:*:*:*:*:*

OR cpe:/o:redhat:enterprise_linux:3::desktop:*:*:*:*:*

OR cpe:/o:mandrakesoft:mandrake_linux:10.1:*:*:*:*:*:*:*

OR cpe:/o:mandrakesoft:mandrake_linux_corporate_server:3.0:*:*:*:*:*:*:*

OR cpe:/o:redhat:enterprise_linux:4::as:*:*:*:*:*

OR cpe:/o:redhat:enterprise_linux:4::desktop:*:*:*:*:*

OR cpe:/o:redhat:enterprise_linux:4::es:*:*:*:*:*

OR cpe:/o:redhat:enterprise_linux:4::ws:*:*:*:*:*

OR cpe:/o:mandrakesoft:mandrake_linux:10.1::x86-64:*:*:*:*:*

OR cpe:/o:mandrakesoft:mandrake_linux_corporate_server:3.0::x86_64:*:*:*:*:*

OR cpe:/o:turbolinux:turbolinux:*:*:home:*:*:*:*:*

OR cpe:/o:debian:debian_linux:4.0:*:*:*:*:*:*:*

OR cpe:/o:mandrakesoft:mandrake_linux:10.0::amd64:*:*:*:*:*

OR cpe:/o:mandrakesoft:mandrake_linux_corporate_server:2.1::x86_64:*:*:*:*:*

Denotes that component is vulnerable

Oval Definitions

Definition ID	Class	Title	Last Modified
oval:org.mitre.oval:def:7799	P	DSA-1678 perl -- design flaws	2014-06-23
oval:org.mitre.oval:def:18549	P	DSA-1678-1 perl - privilege escalation	2014-06-23
oval:org.mitre.oval:def:728	V	HP-UX 11 Perl rmtree Race Condition	2014-03-24
oval:org.mitre.oval:def:10475	V	Race condition in the rmtree function in File::Path.pm in Perl before 5.8.4 allows local users to create arbitrary setuid binaries in the tree being deleted, a different vulnerability than CVE-2004-0452.	2013-04-29
oval:com.redhat.rhsa:def:20050881	P	RHSA-2005:881: perl security update (Moderate)	2005-12-20
oval:com.redhat.rhsa:def:20050674	P	RHSA-2005:674: perl security update (Low)	2005-10-05
oval:org.debian:def:696	V	design flaw	2005-03-22

BACK