CVE-2005-4278

Untrusted search path vulnerability in Perl before 5.8.7-r1 on Gentoo Linux allows local users in the portage group to gain privileges via a malicious shared object in the Portage temporary build directory, which is part of the RUNPATH.

Published: Dec 16, 2005
Updated: Apr 13, 2023
CVE: CVE-2005-4278
Severity: High
Exploit:

CVSS v2:

Severity: High
Score: 7.2
AV:L/AC:L/Au:N/C:C/I:C/A:C

No CWE or OWASP classifications available.

Affected Software
References

Software	From	Fixed in
larry_wall / perl	5.8.0	5.8.0.x
larry_wall / perl	5.4	5.4.x
larry_wall / perl	5.5	5.5.x
larry_wall / perl	5.8.4.2	5.8.4.2.x
larry_wall / perl	-	5.8.6.x
larry_wall / perl	5.8.4	5.8.4.x
larry_wall / perl	5.6.1	5.6.1.x
larry_wall / perl	5.8.4.5	5.8.4.5.x
larry_wall / perl	5.8.4.3	5.8.4.3.x
larry_wall / perl	5.5.3	5.5.3.x
larry_wall / perl	5.3	5.3.x
larry_wall / perl	5.8.4.2.3	5.8.4.2.3.x
larry_wall / perl	5.8.1	5.8.1.x
larry_wall / perl	5.4.5	5.4.5.x
larry_wall / perl	5.8.4.1	5.8.4.1.x
larry_wall / perl	5.8.4.4	5.8.4.4.x
larry_wall / perl	5.8.3	5.8.3.x

Vulnerability Database

289,599

CVE-2005-4278