The PerlIO implementation in Perl 5.8.0, when installed with setuid support (sperl), allows local users to create arbitrary files via the PERLIO_DEBUG variable.
Two exploitable vulnerabilities involving setuid-enabled perl scripts
have been discovered The package “perl-suid” provides a wrapper
around perl which allows to use setuid-root perl scripts, ie
user-callable Perl scripts which have full root privileges ...
Synopsis
perl security update
Type/Severity
Security Advisory: Important
Topic
Updated Perl packages that fix several security issues are now availablefor Red Hat Enterprise Linux 4This update has been rated as having important security impact by the RedHat Security Response Team
Description
...
Synopsis
perl security update
Type/Severity
Security Advisory: Important
Topic
Updated Perl packages that fix several security issues are now availablefor Red Hat Enterprise Linux 3
Description
Perl is a high-level programming language commonly used for systemadministration utilities and W ...
/*
* Copyright Kevin Finisterre
*
* ** DISCLAIMER ** I am in no way responsible for your stupidity
* ** DISCLAIMER ** I am in no way liable for any damages caused by compilation and or execution of this code
*
* ** WARNING ** DO NOT RUN THIS UNLESS YOU KNOW WHAT YOU ARE DOING ***
* ** WARNING ** overwriting /etc/ldsopreload can severly ...