漏洞信息详情
Perl RMTree本地竞态条件漏洞
- CNNVD编号:CNNVD-200412-080
- 危害等级: 低危
![图片[1]-Perl RMTree本地竞态条件漏洞-一一网](https://www.proyy.com/skycj/data/images/2021-09-07/fa6998ac850c38cb90c47a02e5a8652c.png)
- CVE编号:
CVE-2004-0452
- 漏洞类型:
竞争条件
- 发布时间:
2004-12-21
- 威胁类型:
本地
- 更新时间:
2005-10-20
- 厂 商:
larry_wall - 漏洞来源:
The researcher tha… -
漏洞简介
Perl 5.6.1和5.8.4版本的文件::路径模块中的rmtree函数的竞态条件存在漏洞。本地用户借助符号连接攻击删除任意文件和目录且可能读取文件和目录。
漏洞公告
The vendor has released Perl version 5.8.4-5 to address this vulnerability. Please contact the vendor for details.
Please see the referenced advisories for more information.
Larry Wall Perl 5.6.1
-
Citrix MPSF300R05W2K026.msiFrench
http://support.citrix.com/servlet/KbServlet/download/13453-102-16744/M
PSF300R05W2K026.msi -
Citrix MPSG300R05W2K026.msiGerman
http://support.citrix.com/servlet/KbServlet/download/13451-102-16742/M
PSG300R05W2K026.msi -
Citrix MPSG300R05W2K3038.msiGerman
http://support.citrix.com/servlet/KbServlet/download/13446-102-16737/M
PSG300R05W2K3038.msi -
Citrix MPSJ300R05W2K026.msiJapanese
http://support.citrix.com/servlet/KbServlet/download/13452-102-16743/M
PSJ300R05W2K026.msi -
Citrix MPSJ300R05W2K3038.msiJapanese
http://support.citrix.com/servlet/KbServlet/download/13447-102-16738/M
PSJ300R05W2K3038.msi -
Citrix MPSS300R05W2K026.msiSpanish
http://support.citrix.com/servlet/KbServlet/download/13454-102-16745/M
PSS300R05W2K026.msi -
Debian libperl-dev_5.6.1-8.8_alpha.debDebian GNU/Linux 3.0 alias woody
http://security.debian.org/pool/updates/main/p/perl/libperl-dev_5.6.1-
8.8_alpha.deb -
Debian libperl-dev_5.6.1-8.8_arm.debDebian GNU/Linux 3.0 alias woody
http://security.debian.org/pool/updates/main/p/perl/libperl-dev_5.6.1-
8.8_arm.deb -
Debian libperl-dev_5.6.1-8.8_hppa.debDebian GNU/Linux 3.0 alias woody
http://security.debian.org/pool/updates/main/p/perl/libperl-dev_5.6.1-
8.8_hppa.deb -
Debian libperl-dev_5.6.1-8.8_i386.debDebian GNU/Linux 3.0 alias woody
http://security.debian.org/pool/updates/main/p/perl/libperl-dev_5.6.1-
8.8_i386.deb -
Debian libperl-dev_5.6.1-8.8_ia64.debDebian GNU/Linux 3.0 alias woody
http://security.debian.org/pool/updates/main/p/perl/libperl-dev_5.6.1-
8.8_ia64.deb -
Debian libperl-dev_5.6.1-8.8_m68k.debDebian GNU/Linux 3.0 alias woody
http://security.debian.org/pool/updates/main/p/perl/libperl-dev_5.6.1-
8.8_m68k.deb -
Debian libperl-dev_5.6.1-8.8_mips.debDebian GNU/Linux 3.0 alias woody
http://security.debian.org/pool/updates/main/p/perl/libperl-dev_5.6.1-
8.8_mips.deb -
Debian libperl-dev_5.6.1-8.8_mipsel.debDebian GNU/Linux 3.0 alias woody
http://security.debian.org/pool/updates/main/p/perl/libperl-dev_5.6.1-
8.8_mipsel.deb -
Debian libperl-dev_5.6.1-8.8_powerpc.debDebian GNU/Linux 3.0 alias woody
http://security.debian.org/pool/updates/main/p/perl/libperl-dev_5.6.1-
8.8_powerpc.deb -
Debian libperl-dev_5.6.1-8.8_s390.debDebian GNU/Linux 3.0 alias woody
http://security.debian.org/pool/updates/main/p/perl/libperl-dev_5.6.1-
8.8_s390.deb -
Debian libperl5.6_5.6.1-8.8_alpha.debDebian GNU/Linux 3.0 alias woody
http://security.debian.org/pool/updates/main/p/perl/libperl5.6_5.6.1-8
.8_alpha.deb -
Debian libperl5.6_5.6.1-8.8_arm.debDebian GNU/Linux 3.0 alias woody
http://security.debian.org/pool/updates/main/p/perl/libperl5.6_5.6.1-8
.8_arm.deb -
Debian libperl5.6_5.6.1-8.8_hppa.debDebian GNU/Linux 3.0 alias woody
http://security.debian.org/pool/updates/main/p/perl/libperl5.6_5.6.1-8
.8_hppa.deb -
Debian libperl5.6_5.6.1-8.8_i386.debDebian GNU/Linux 3.0 alias woody
http://security.debian.org/pool/updates/main/p/perl/libperl5.6_5.6.1-8
.8_i386.deb -
Debian libperl5.6_5.6.1-8.8_ia64.debDebian GNU/Linux 3.0 alias woody
http://security.debian.org/pool/updates/main/p/perl/libperl5.6_5.6.1-8
.8_ia64.deb -
Debian libperl5.6_5.6.1-8.8_m68k.debDebian GNU/Linux 3.0 alias woody
http://security.debian.org/pool/updates/main/p/perl/libperl5.6_5.6.1-8
.8_m68k.deb -
Debian libperl5.6_5.6.1-8.8_mips.debDebian GNU/Linux 3.0 alias woody
http://security.debian.org/pool/updates/main/p/perl/libperl5.6_5.6.1-8
.8_mips.deb -
Debian libperl5.6_5.6.1-8.8_mipsel.debDebian GNU/Linux 3.0 alias woody
http://security.debian.org/pool/updates/main/p/perl/libperl5.6_5.6.1-8
.8_mipsel.deb -
Debian libperl5.6_5.6.1-8.8_powerpc.debDebian GNU/Linux 3.0 alias woody
http://security.debian.org/pool/updates/main/p/perl/libperl5.6_5.6.1-8
.8_powerpc.deb -
Debian libperl5.6_5.6.1-8.8_s390.debDebian GNU/Linux 3.0 alias woody
http://security.debian.org/pool/updates/main/p/perl/libperl5.6_5.6.1-8
.8_s390.deb -
Debian perl-base_5.6.1-8.8_alpha.debDebian GNU/Linux 3.0 alias woody
http://security.debian.org/pool/updates/main/p/perl/perl-base_5.6.1-8.
8_alpha.deb -
Debian perl-base_5.6.1-8.8_arm.debDebian GNU/Linux 3.0 alias woody
参考网址
来源: REDHAT
名称: RHSA-2005:103
链接:http://www.redhat.com/support/errata/RHSA-2005-103.html
来源: GENTOO
名称: GLSA-200501-38
链接:http://www.gentoo.org/security/en/glsa/glsa-200501-38.xml
来源: DEBIAN
名称: DSA-620
链接:http://www.debian.org/security/2004/dsa-620
来源: BUGTRAQ
名称: 20050111 [OpenPKG-SA-2005.001] OpenPKG Security Advisory (perl)
链接:http://marc.theaimsgroup.com/?l=bugtraq&m=110547693019788&w=2
来源: XF
名称: perl-filepathrmtree-insecure-permissions(18650)
链接:http://xforce.iss.net/xforce/xfdb/18650
来源: OVAL
名称: oval:org.mitre.oval:def:9938
链接:http://oval.mitre.org/repository/data/getDef?id=oval:org.mitre.oval:def:9938
来源: UBUNTU
名称: USN-44-1
链接:http://marc.free.net.ph/message/20041221.102713.5d5e603a.html
来源: BID
名称: 12072
链接:http://www.securityfocus.com/bid/12072
来源: REDHAT
名称: RHSA-2005:105
链接:http://www.redhat.com/support/errata/RHSA-2005-105.html
来源: SECUNIA
名称: 18517
链接:http://secunia.com/advisories/18517
来源: SECUNIA
名称: 12991
链接:http://secunia.com/advisories/12991
来源: FEDORA
名称: FLSA-2006:152845
链接:http://fedoranews.org/updates/FEDORA–.shtml
来源: SGI
名称: 20060101-01-U
链接:ftp://patches.sgi.com/support/free/security/advisories/20060101-01-U
![[桜井宁宁]COS和泉纱雾超可爱写真福利集-一一网](https://www.proyy.com/skycj/data/images/2020-12-13/4d3cf227a85d7e79f5d6b4efb6bde3e8.jpg)
![[桜井宁宁] 爆乳奶牛少女cos写真-一一网](https://www.proyy.com/skycj/data/images/2020-12-13/d40483e126fcf567894e89c65eaca655.jpg)
