CVE-2005-4278
NONE EPSS 31.7%
Published Dec 16, 200520y ago · Modified Jun 16, 20262w ago
Published Dec 16, 2005 20y ago
Last Modified Jun 16, 2026 2w ago
Description
Untrusted search path vulnerability in Perl before 5.8.7-r1 on Gentoo Linux allows local users in the portage group to gain privileges via a malicious shared object in the Portage temporary build directory, which is part of the RUNPATH.
Threat Intelligence
EPSS Exploit Probability
31.7% percentile
Exploit & Patch Status
No Known Exploit
Patch Available
Affected Products 17
| Vendor | Product | Version | Range |
|---|---|---|---|
| larry_wall | perl | * | ≤5.8.6 |
| larry_wall | perl | 5.3 | any |
| larry_wall | perl | 5.4 | any |
| larry_wall | perl | 5.4.5 | any |
| larry_wall | perl | 5.5 | any |
| larry_wall | perl | 5.5.3 | any |
| larry_wall | perl | 5.6.1 | any |
| larry_wall | perl | 5.8.0 | any |
| larry_wall | perl | 5.8.1 | any |
| larry_wall | perl | 5.8.3 | any |
| larry_wall | perl | 5.8.4 | any |
| larry_wall | perl | 5.8.4.1 | any |
| larry_wall | perl | 5.8.4.2 | any |
| larry_wall | perl | 5.8.4.2.3 | any |
| larry_wall | perl | 5.8.4.3 | any |
| larry_wall | perl | 5.8.4.4 | any |
| larry_wall | perl | 5.8.4.5 | any |
References 6
- secunia.com http://secunia.com/advisories/17232
- secunia.com http://secunia.com/advisories/55314
- gentoo.org http://www.gentoo.org/security/en/glsa/glsa-200510-14.xml
- osvdb.org http://www.osvdb.org/20086
- securityfocus.com http://www.securityfocus.com/bid/15120
- vupen.com http://www.vupen.com/english/advisories/2005/2119
Remediation
- gentoo.org http://www.gentoo.org/security/en/glsa/glsa-200510-14.xml
- securityfocus.com http://www.securityfocus.com/bid/15120