CVE-2005-0155

NONE EPSS 64.4%
Published May 2, 200521y ago · Modified Jun 16, 20262w ago
Find Similar
Published May 2, 2005 21y ago
Last Modified Jun 16, 2026 2w ago

Description

The PerlIO implementation in Perl 5.8.0, when installed with setuid support (sperl), allows local users to create arbitrary files via the PERLIO_DEBUG variable.

Threat Intelligence

EPSS Exploit Probability
64.4% percentile
Exploit & Patch Status
Public Exploit Known
Patch Available

Affected Products 1

VendorProductVersionRange
larry_wallperl5.8.0any

References 16

  • distro.conectiva.com.br http://distro.conectiva.com.br/atualizacoes/?id=a&anuncio=001056
  • fedoranews.org http://fedoranews.org/updates/FEDORA--.shtml
  • marc.info http://marc.info/?l=bugtraq&m=110737149402683&w=2
  • marc.info http://marc.info/?l=full-disclosure&m=110779723332339&w=2
  • secunia.com http://secunia.com/advisories/14120
  • secunia.com http://secunia.com/advisories/21646
  • support.avaya.com http://support.avaya.com/elmodocs2/security/ASA-2006-163.htm
  • digitalmunition.com http://www.digitalmunition.com/DMA%5B2005-0131a%5D.txt
  • gentoo.org http://www.gentoo.org/security/en/glsa/glsa-200502-13.xml
    PatchVendor Advisory
  • mandriva.com http://www.mandriva.com/security/advisories?name=MDKSA-2005:031
  • redhat.com http://www.redhat.com/support/errata/RHSA-2005-103.html
    PatchVendor Advisory
  • redhat.com http://www.redhat.com/support/errata/RHSA-2005-105.html
    PatchVendor Advisory
  • securityfocus.com http://www.securityfocus.com/bid/12426
    ExploitPatchVendor Advisory
  • trustix.org http://www.trustix.org/errata/2005/0003/
    Patch
  • exchange.xforce.ibmcloud.com https://exchange.xforce.ibmcloud.com/vulnerabilities/19207
  • oval.cisecurity.org https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10404

Remediation

  • gentoo.org http://www.gentoo.org/security/en/glsa/glsa-200502-13.xml
    PatchVendor Advisory
  • redhat.com http://www.redhat.com/support/errata/RHSA-2005-103.html
    PatchVendor Advisory
  • redhat.com http://www.redhat.com/support/errata/RHSA-2005-105.html
    PatchVendor Advisory
  • securityfocus.com http://www.securityfocus.com/bid/12426
    ExploitPatchVendor Advisory
  • trustix.org http://www.trustix.org/errata/2005/0003/
    Patch