Back to search
CVE-2017-6512
Published: Jun 1, 2017
Modified: Aug 5, 2024
PUBLISHED
Description
Race condition in the rmtree and remove_tree functions in the File-Path module before 2.13 for Perl allows attackers to set the mode on arbitrary files via vectors involving directory-permission loosening logic.
| Vendor | Product | Versions |
|---|---|---|
n/a | n/a | affected n/a |
References
http://cpansearch.perl.org/src/JKEENAN/File-Path-2.13/Changes
x_refsource_CONFIRM
USN-3625-2
vendor-advisory
x_refsource_UBUNTU
DSA-3873
vendor-advisory
x_refsource_DEBIAN
99180
vdb-entry
x_refsource_BID
1038610
vdb-entry
x_refsource_SECTRACK
GLSA-201709-12
vendor-advisory
x_refsource_GENTOO
http://security.cucumberlinux.com/security/details.php?id=153
x_refsource_CONFIRM
https://rt.cpan.org/Ticket/Display.html?id=121951
x_refsource_CONFIRM
USN-3625-1
vendor-advisory
x_refsource_UBUNTU
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now