File Overwrite Vulnerability in Perl 5.8.0 by Perl
CVE-2005-0155

Currently unrated

Key Information:

Vendor: Larry Wall
Status: Perl
Vendor: CVE Published:; 2 May 2005

What is CVE-2005-0155?

The Perl 5.8.0 implementation, when configured with setuid support, exposes a security flaw that allows local users to exploit the PERLIO_DEBUG variable. This vulnerability enables unauthorized file creation, which can lead to potential escalation of privileges and other security risks. It is essential for organizations using this version of Perl to implement security patches and updates to mitigate any possible attacks leveraging this flaw.

References

http://www.securityfocus.com/bid/12426

vdb-entryx_refsource_BID

http://secunia.com/advisories/21646

third-party-advisoryx_refsource_SECUNIA

http://www.redhat.com/support/errata/RHSA-2005-105.html

vendor-advisoryx_refsource_REDHAT

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
May 2, 2005
Vulnerability Reserved
Jan 27, 2005

Larry Wall

What is CVE-2005-0155?

References

Timeline