CVE-2004-0976

12 documents8 sources
Severity
2.1LOW
EPSS
0.1%
top 70.39%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
1
Larry Wall Perl
Timeline
PublishedFeb 9
Latest updateApr 29

Description

Multiple scripts in the perl package in Trustix Secure Linux 1.5 through 2.1 and other operating systems allows local users to overwrite files via a symlink attack on temporary files.

CVSS vector

AV:L/AC:L/C:N/I:P/A:NExploitability: 3.9 | Impact: 2.9

Affected Packages2 packages

Debianperl< 5.8.4-4+3
NVDlarry_wall/perl5 versions+4

Patches

Patch: www.securityfocus.comPatch: www.securityfocus.com

🔴Vulnerability Details

3
GHSA
GHSA-6qxh-9332-mwqh: Multiple scripts in the perl package in Trustix Secure Linux 12022-04-29
OSV
CVE-2004-0976: Multiple scripts in the perl package in Trustix Secure Linux 12005-02-09
CVEList
CVE-2004-0976: Multiple scripts in the perl package in Trustix Secure Linux 12004-10-20

📋Vendor Advisories

3
Ubuntu
perl vulnerabilities2004-11-03
Red Hat
security flaw2004-09-30
Debian
CVE-2004-0976: perl - Multiple scripts in the perl package in Trustix Secure Linux 1.5 through 2.1 and...2004

💬Community

4
Bugzilla
CVE-2004-0976 security flaw2018-08-16
Bugzilla
CVE-2004-0976 temporary file vulnerabilities in Perl2005-11-08
Bugzilla
CVE-2004-0976 temporary file vulnerabilities in Perl2004-11-19
Bugzilla
CVE-2004-0976 temporary file vulnerabilities in Perl2004-10-19
CVE-2004-0976 (LOW CVSS 2.1) | Multiple scripts in the perl packag | cvebase.io