Anfälligkeitssuche        Suche in 172616 CVE Beschreibungen
und 81291 Test Beschreibungen,
Zugriff auf 10,000+ Quellverweise.
Tests   CVE   Alle  

CVE Kennung:CAN-2005-4158
Beschreibung:Sudo before 1.6.8 p12, when the Perl taint flag is off, does not clear the (1) PERLLIB, (2) PERL5LIB, and (3) PERL5OPT environment variables, which allows limited local users to cause a Perl script to include and execute arbitrary library files that have the same name as library files that are included by the script.
Test Kennungen: Nicht verfügbar
Querverweise: Common Vulnerability Exposure (CVE) ID: CVE-2005-4158
BugTraq ID: 15394
http://www.securityfocus.com/bid/15394
Debian Security Information: DSA-946 (Google Search)
http://www.debian.org/security/2006/dsa-946
http://www.mandriva.com/security/advisories?name=MDKSA-2005:234
http://www.mandriva.com/security/advisories?name=MDKSA-2006:159
http://securitytracker.com/alerts/2005/Nov/1015192.html
http://secunia.com/advisories/17534/
http://secunia.com/advisories/18102
http://secunia.com/advisories/18156
http://secunia.com/advisories/18308
http://secunia.com/advisories/18463
http://secunia.com/advisories/18549
http://secunia.com/advisories/18558
http://secunia.com/advisories/21692
SuSE Security Announcement: SUSE-SR:2006:002 (Google Search)
http://www.novell.com/linux/security/advisories/2006_02_sr.html
http://www.trustix.org/errata/2006/0002/
https://www.ubuntu.com/usn/usn-235-1/
http://www.vupen.com/english/advisories/2005/2386
XForce ISS Database: sudo-perl-execute-code(23102)
https://exchange.xforce.ibmcloud.com/vulnerabilities/23102




© 1998-2020 E-Soft Inc. Alle Rechte vorbehalten.