mirror of
https://github.com/0xMarcio/cve.git
synced 2026-06-05 02:28:16 +02:00
0xMarcio
867 B
867 B
CVE-2004-0452
Description
Race condition in the rmtree function in the File::Path module in Perl 5.6.1 and 5.8.4 sets read/write permissions for the world, which allows local users to delete arbitrary files and directories, and possibly read files and directories, via a symlink attack.
POC
Reference
- https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A9938
- https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A9938
Github
No PoCs found on GitHub currently.