NuytsTech Security

CVE-2004-0452

by ·

Race condition in the rmtree function in the File::Path module in Perl 5.6.1 and 5.8.4 sets read/write permissions for the world, which allows local users to delete arbitrary files and directories, and possibly read files and directories, via a symlink attack.

Date published : 2004-12-31

http://www.securityfocus.com/bid/12072

http://marc.info/?l=bugtraq&m=110547693019788&w=2

Tags: