CVE

Id
2279  
CVE No.
CVE-2000-0703  
Status
Entry  
Description
suidperl (aka sperl) does not properly cleanse the escape sequence "~!" before calling /bin/mail to send an error report, which allows local users to gain privileges by setting the "interactive" environmental variable and calling suidperl with a filename that contains the escape sequence.  
Phase
 
Votes
 
Comments
 

Actions

Related CVE References

Id CVE Id CVE No. Reference Actions
8220 2279 CVE-2000-0703 BUGTRAQ:20000805 sperl 5.00503 (and newer ;) exploit  View
8221 2279 CVE-2000-0703 URL:http://archives.neohapsis.com/archives/bugtraq/2000-08/0022.html  View
8222 2279 CVE-2000-0703 SUSE:20000810 Security Hole in perl, all versions  View
8223 2279 CVE-2000-0703 URL:http://www.novell.com/linux/security/advisories/suse_security_announce_59.html  View
8224 2279 CVE-2000-0703 CALDERA:CSSA-2000-026.0  View
8225 2279 CVE-2000-0703 URL:http://www.calderasystems.com/support/security/advisories/CSSA-2000-026.0.txt  View
8226 2279 CVE-2000-0703 DEBIAN:20000810  View
8227 2279 CVE-2000-0703 REDHAT:RHSA-2000:048  View
8228 2279 CVE-2000-0703 URL:http://www.redhat.com/support/errata/RHSA-2000-048.html  View
8229 2279 CVE-2000-0703 TURBO:TLSA2000018-1  View
8230 2279 CVE-2000-0703 URL:http://www.turbolinux.com/pipermail/tl-security-announce/2000-August/000017.html  View
8231 2279 CVE-2000-0703 BUGTRAQ:20000814 Trustix Security Advisory - perl and mailx  View
8232 2279 CVE-2000-0703 URL:http://archives.neohapsis.com/archives/bugtraq/2000-08/0153.html  View
8233 2279 CVE-2000-0703 BUGTRAQ:20000808 MDKSA-2000:031 perl update  View
8234 2279 CVE-2000-0703 URL:http://archives.neohapsis.com/archives/bugtraq/2000-08/0086.html  View
8235 2279 CVE-2000-0703 BUGTRAQ:20000810 Conectiva Linux security announcemente - PERL  View
8236 2279 CVE-2000-0703 URL:http://archives.neohapsis.com/archives/bugtraq/2000-08/0113.html  View
8237 2279 CVE-2000-0703 BID:1547  View
8238 2279 CVE-2000-0703 URL:http://www.securityfocus.com/bid/1547  View

Related JVN