Back to search
CVE-2000-0703
Published: Oct 13, 2000
Modified: Aug 8, 2024
PUBLISHED
Description
suidperl (aka sperl) does not properly cleanse the escape sequence "~!" before calling /bin/mail to send an error report, which allows local users to gain privileges by setting the "interactive" environmental variable and calling suidperl with a filename that contains the escape sequence.
| Vendor | Product | Versions |
|---|---|---|
n/a | n/a | affected n/a |
References
TLSA2000018-1
vendor-advisory
x_refsource_TURBO
1547
vdb-entry
x_refsource_BID
RHSA-2000:048
vendor-advisory
x_refsource_REDHAT
CSSA-2000-026.0
vendor-advisory
x_refsource_CALDERA
20000808 MDKSA-2000:031 perl update
mailing-list
x_refsource_BUGTRAQ
20000814 Trustix Security Advisory - perl and mailx
mailing-list
x_refsource_BUGTRAQ
20000805 sperl 5.00503 (and newer ;) exploit
mailing-list
x_refsource_BUGTRAQ
20000810 Security Hole in perl, all versions
vendor-advisory
x_refsource_SUSE
20000810 Conectiva Linux security announcemente - PERL
mailing-list
x_refsource_BUGTRAQ
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now