CVE-2005-4278

NONE EPSS 31.7%
Published Dec 16, 200520y ago · Modified Jun 16, 20262w ago
Find Similar
Published Dec 16, 2005 20y ago
Last Modified Jun 16, 2026 2w ago

Description

Untrusted search path vulnerability in Perl before 5.8.7-r1 on Gentoo Linux allows local users in the portage group to gain privileges via a malicious shared object in the Portage temporary build directory, which is part of the RUNPATH.

Threat Intelligence

EPSS Exploit Probability
31.7% percentile
Exploit & Patch Status
No Known Exploit
Patch Available

Affected Products 17

VendorProductVersionRange
larry_wallperl* ≤5.8.6
larry_wallperl5.3any
larry_wallperl5.4any
larry_wallperl5.4.5any
larry_wallperl5.5any
larry_wallperl5.5.3any
larry_wallperl5.6.1any
larry_wallperl5.8.0any
larry_wallperl5.8.1any
larry_wallperl5.8.3any
larry_wallperl5.8.4any
larry_wallperl5.8.4.1any
larry_wallperl5.8.4.2any
larry_wallperl5.8.4.2.3any
larry_wallperl5.8.4.3any
larry_wallperl5.8.4.4any
larry_wallperl5.8.4.5any

References 6

  • secunia.com http://secunia.com/advisories/17232
    Vendor Advisory
  • secunia.com http://secunia.com/advisories/55314
  • gentoo.org http://www.gentoo.org/security/en/glsa/glsa-200510-14.xml
    Patch
  • osvdb.org http://www.osvdb.org/20086
  • securityfocus.com http://www.securityfocus.com/bid/15120
    Patch
  • vupen.com http://www.vupen.com/english/advisories/2005/2119

Remediation

  • gentoo.org http://www.gentoo.org/security/en/glsa/glsa-200510-14.xml
    Patch
  • securityfocus.com http://www.securityfocus.com/bid/15120
    Patch