cbcvebase.
CVE-2005-0448
published 2005-05-02

CVE-2005-0448: Race condition in the rmtree function in File::Path.pm in Perl before 5.8.4 allows local users to create arbitrary setuid binaries in the tree being deleted, a…

PriorityP411low1.2CVSS 2.0
AVLACHAuNCNIPAN
EPSS
0.39%
30.5th percentile
Race condition in the rmtree function in File::Path.pm in Perl before 5.8.4 allows local users to create arbitrary setuid binaries in the tree being deleted, a different vulnerability than CVE-2004-0452.

Affected

21 ranges
VendorProductVersion rangeFixed in
debianperl< perl 5.10.0-18 (bookworm)perl 5.10.0-18 (bookworm)
debianperl< perl 5.8.4-7 (bookworm)perl 5.8.4-7 (bookworm)
debianperl< perl 5.10.0-11 (bookworm)perl 5.10.0-11 (bookworm)
larry_wallperl
larry_wallperl
larry_wallperl
larry_wallperl
perlfile
perlperl
perlperl>= 0 < 5.10.0-185.10.0-18
perlperl>= 0 < 5.8.4-75.8.4-7
perlperl>= 0 < 5.10.0-115.10.0-11
perlperl>= 0 < 5.10.0-185.10.0-18
perlperl>= 0 < 5.8.4-75.8.4-7
perlperl>= 0 < 5.10.0-115.10.0-11
perlperl>= 0 < 5.10.0-185.10.0-18
perlperl>= 0 < 5.8.4-75.8.4-7
perlperl>= 0 < 5.10.0-115.10.0-11
perlperl>= 0 < 5.10.0-185.10.0-18
perlperl>= 0 < 5.8.4-75.8.4-7
perlperl>= 0 < 5.10.0-115.10.0-11

CVSS provenance

nvdv2.01.2LOWAV:L/AC:H/Au:N/C:N/I:P/A:N
osv2.6LOW
vendor_debian2.6LOW
vendor_redhat2.6LOW
Stop checking back — get the weekly exploitation signal.

Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.