CVE-2005-0155
published 2005-05-02CVE-2005-0155: The PerlIO implementation in Perl 5.8.0, when installed with setuid support (sperl), allows local users to create arbitrary files via the PERLIO_DEBUG variable.
PriorityP417medium4.6CVSS 2.0
AVLACLAuNCPIPAP
EXPLOIT
EPSS
1.20%
64.3th percentile
The PerlIO implementation in Perl 5.8.0, when installed with setuid support (sperl), allows local users to create arbitrary files via the PERLIO_DEBUG variable.
Affected
7 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| debian | perl | < perl 5.8.4-6 (bookworm) | perl 5.8.4-6 (bookworm) |
| larry_wall | perl | — | — |
| perl | perl | >= 0 < 5.8.4-6 | 5.8.4-6 |
| perl | perl | >= 0 < 5.8.4-6 | 5.8.4-6 |
| perl | perl | >= 0 < 5.8.4-6 | 5.8.4-6 |
| perl | perl | >= 0 < 5.8.4-6 | 5.8.4-6 |
| redhat | enterprise_linux | — | — |
CVSS provenance
nvdv2.04.6MEDIUMAV:L/AC:L/Au:N/C:P/I:P/A:P
osv4.6MEDIUM
vendor_debian4.6MEDIUM
vendor_redhat4.6MEDIUM
CVEs like this are exactly what “Exploited This Week” covers.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
GHSA
GHSA-wmj6-p2pm-q3w6: The PerlIO implementation in Perl 5
ghsa_unreviewed·2022-05-01
CVE-2005-0155 [MEDIUM] GHSA-wmj6-p2pm-q3w6: The PerlIO implementation in Perl 5
The PerlIO implementation in Perl 5.8.0, when installed with setuid support (sperl), allows local users to create arbitrary files via the PERLIO_DEBUG variable.
GHSA
GHSA-h95j-w8vr-v949: A regression error in the Perl package for Red Hat Enterprise Linux 4 omits the patch for CVE-2005-0155, which allows local users to overwrite arbitra
ghsa_unreviewed·2022-05-01·CVSS 4.6
CVE-2006-3813 [MEDIUM] GHSA-h95j-w8vr-v949: A regression error in the Perl package for Red Hat Enterprise Linux 4 omits the patch for CVE-2005-0155, which allows local users to overwrite arbitra
A regression error in the Perl package for Red Hat Enterprise Linux 4 omits the patch for CVE-2005-0155, which allows local users to overwrite arbitrary files with debugging information.
OSV
CVE-2005-0155: The PerlIO implementation in Perl 5
osv·2005-05-02·CVSS 4.6
CVE-2005-0155 [MEDIUM] CVE-2005-0155: The PerlIO implementation in Perl 5
The PerlIO implementation in Perl 5.8.0, when installed with setuid support (sperl), allows local users to create arbitrary files via the PERLIO_DEBUG variable.
Red Hat
security flaw
vendor_redhat·2006-08-10·CVSS 4.6
CVE-2006-3813 [MEDIUM] security flaw
security flaw
A regression error in the Perl package for Red Hat Enterprise Linux 4 omits the patch for CVE-2005-0155, which allows local users to overwrite arbitrary files with debugging information.
Ubuntu
Perl vulnerabilities
vendor_ubuntu·2005-02-02
CVE-2005-0155 Perl vulnerabilities
Title: Perl vulnerabilities
Summary: Perl vulnerabilities
Two exploitable vulnerabilities involving setuid-enabled perl scripts
have been discovered. The package "perl-suid" provides a wrapper
around perl which allows to use setuid-root perl scripts, i.e.
user-callable Perl scripts which have full root privileges.
Previous versions allowed users to overwrite arbitrary files by
setting the PERLIO_DEBUG environment variable and calling an arbitrary
setuid-root perl script. The file that PERLIO_DEBUG points to was then
overwritten by Perl debug messages. This did not allow precise control
over the file content, but could destroy important data. PERLIO_DEBUG
is now ignored for setuid scripts. (CAN-2005-0155)
In addition, calling a setuid-root perl script with a very long path
caused a buff
Red Hat
security flaw
vendor_redhat·2005-02-01·CVSS 4.6
CVE-2005-0155 [MEDIUM] security flaw
security flaw
The PerlIO implementation in Perl 5.8.0, when installed with setuid support (sperl), allows local users to create arbitrary files via the PERLIO_DEBUG variable.
Debian
CVE-2005-0155: perl - The PerlIO implementation in Perl 5.8.0, when installed with setuid support (spe...
vendor_debian·2005·CVSS 4.6
CVE-2005-0155 [MEDIUM] CVE-2005-0155: perl - The PerlIO implementation in Perl 5.8.0, when installed with setuid support (spe...
The PerlIO implementation in Perl 5.8.0, when installed with setuid support (sperl), allows local users to create arbitrary files via the PERLIO_DEBUG variable.
Scope: local
bookworm: resolved (fixed in 5.8.4-6)
bullseye: resolved (fixed in 5.8.4-6)
forky: resolved (fixed in 5.8.4-6)
sid: resolved (fixed in 5.8.4-6)
trixie: resolved (fixed in 5.8.4-6)
No detection rules found.
Bugzilla
CVE-2006-3813 security flaw
bugzilla·2018-08-16·CVSS 4.6
CVE-2006-3813 [MEDIUM] CVE-2006-3813 security flaw
CVE-2006-3813 security flaw
Flaw bug created to hold information about an old flaw we knew something about. For more details see the MITRE CVE description.
Discussion:
MITRE description:
A regression error in the Perl package for Red Hat Enterprise Linux 4 omits the patch for CVE-2005-0155, which allows local users to overwrite arbitrary files with debugging information.
Bugzilla
CVE-2005-0155 security flaw
bugzilla·2018-08-16·CVSS 4.6
CVE-2005-0155 [MEDIUM] CVE-2005-0155 security flaw
CVE-2005-0155 security flaw
Flaw bug created to hold information about an old flaw we knew something about. For more details see the MITRE CVE description.
Discussion:
MITRE description:
The PerlIO implementation in Perl 5.8.0, when installed with setuid support (sperl), allows local users to create arbitrary files via the PERLIO_DEBUG variable.
http://distro.conectiva.com.br/atualizacoes/?id=a&anuncio=001056http://fedoranews.org/updates/FEDORA--.shtmlhttp://marc.info/?l=bugtraq&m=110737149402683&w=2http://marc.info/?l=full-disclosure&m=110779723332339&w=2http://secunia.com/advisories/14120http://secunia.com/advisories/21646http://support.avaya.com/elmodocs2/security/ASA-2006-163.htmhttp://www.digitalmunition.com/DMA%5B2005-0131a%5D.txthttp://www.gentoo.org/security/en/glsa/glsa-200502-13.xmlhttp://www.mandriva.com/security/advisories?name=MDKSA-2005:031http://www.redhat.com/support/errata/RHSA-2005-103.htmlhttp://www.redhat.com/support/errata/RHSA-2005-105.htmlhttp://www.securityfocus.com/bid/12426http://www.trustix.org/errata/2005/0003/https://exchange.xforce.ibmcloud.com/vulnerabilities/19207https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10404http://distro.conectiva.com.br/atualizacoes/?id=a&anuncio=001056http://fedoranews.org/updates/FEDORA--.shtmlhttp://marc.info/?l=bugtraq&m=110737149402683&w=2http://marc.info/?l=full-disclosure&m=110779723332339&w=2http://secunia.com/advisories/14120http://secunia.com/advisories/21646http://support.avaya.com/elmodocs2/security/ASA-2006-163.htmhttp://www.digitalmunition.com/DMA%5B2005-0131a%5D.txthttp://www.gentoo.org/security/en/glsa/glsa-200502-13.xmlhttp://www.mandriva.com/security/advisories?name=MDKSA-2005:031http://www.redhat.com/support/errata/RHSA-2005-103.htmlhttp://www.redhat.com/support/errata/RHSA-2005-105.htmlhttp://www.securityfocus.com/bid/12426http://www.trustix.org/errata/2005/0003/https://exchange.xforce.ibmcloud.com/vulnerabilities/19207https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10404
2005-05-02
Published