Vulnerability in Larry_wall Perl
CVE-2005-4278
Untrusted search path vulnerability in Perl before 5.8.7-r1 on Gentoo Linux allows local users in the portage group to gain privileges via a malicious shared object in the Portage temporary build directory, which is part of the RUNPATH.
EPSS: 0.004 (31.3th percentile) — read the EPSS interpretation.
Affected products
- Larry_wall Perl — versions 5.3, 5.4, 5.4.5
- N/a — versions n/a
References
- cve@mitre.org (vdb-entry, x_refsource_VUPEN)
- cve@mitre.org (vendor-advisory, Patch, x_refsource_GENTOO)
- cve@mitre.org (x_refsource_SECUNIA, third-party-advisory)
- cve@mitre.org (x_refsource_SECUNIA, Vendor Advisory, third-party-advisory)
- cve@mitre.org (x_refsource_OSVDB, vdb-entry)
- cve@mitre.org (Patch, vdb-entry, x_refsource_BID)