Vulnerability Details CVE-1999-1386
Perl 5.004_04 and earlier follows symbolic links when running with the -e option, which allows local users to overwrite arbitrary files via a symlink attack on the /tmp/perl-eaXXXXX file.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.002
EPSS Ranking 38.9%
CVSS Severity
CVSS v3 Score 5.5
CVSS v2 Score 2.1
References
- http://marc.info/?l=bugtraq&m=88932165406213&w=2
- http://www.iss.net/security_center/static/7243.php
- http://www.redhat.com/support/errata/rh50-errata-general.html#perl
- http://marc.info/?l=bugtraq&m=88932165406213&w=2
- http://www.iss.net/security_center/static/7243.php
- http://www.redhat.com/support/errata/rh50-errata-general.html#perl
Products affected by CVE-1999-1386
-
cpe:2.3:a:perl:perl:-
-
cpe:2.3:a:perl:perl:0.1
-
cpe:2.3:a:perl:perl:0.2
-
cpe:2.3:a:perl:perl:0.3
-
cpe:2.3:a:perl:perl:0.4
-
cpe:2.3:a:perl:perl:0.5
-
cpe:2.3:a:perl:perl:0.52
-
cpe:2.3:a:perl:perl:0.61
-
cpe:2.3:a:perl:perl:0.62
-
cpe:2.3:a:perl:perl:0.63
-
cpe:2.3:a:perl:perl:0.64
-
cpe:2.3:a:perl:perl:0.65
-
cpe:2.3:a:perl:perl:0.66
-
cpe:2.3:a:perl:perl:0.67
-
cpe:2.3:a:perl:perl:0.68
-
cpe:2.3:a:perl:perl:0.69
-
cpe:2.3:a:perl:perl:0.70
-
cpe:2.3:a:perl:perl:0.71
-
cpe:2.3:a:perl:perl:0.72
-
cpe:2.3:a:perl:perl:0.73
-
cpe:2.3:a:perl:perl:0.80
-
cpe:2.3:a:perl:perl:0.81
-
cpe:2.3:a:perl:perl:0.82
-
cpe:2.3:a:perl:perl:0.83
-
cpe:2.3:a:perl:perl:0.84
-
cpe:2.3:a:perl:perl:0.85
-
cpe:2.3:a:perl:perl:0.86
-
cpe:2.3:a:perl:perl:0.87
-
cpe:2.3:a:perl:perl:0.88
-
cpe:2.3:a:perl:perl:0.89
-
cpe:2.3:a:perl:perl:0.90
-
cpe:2.3:a:perl:perl:0.91
-
cpe:2.3:a:perl:perl:0.92
-
cpe:2.3:a:perl:perl:0.93
-
cpe:2.3:a:perl:perl:0.94
-
cpe:2.3:a:perl:perl:0.95
-
cpe:2.3:a:perl:perl:0.96
-
cpe:2.3:a:perl:perl:0.97
-
cpe:2.3:a:perl:perl:0.98
-
cpe:2.3:a:perl:perl:0.99
-
cpe:2.3:a:perl:perl:1.0.15
-
cpe:2.3:a:perl:perl:1.0.16
-
cpe:2.3:a:perl:perl:1.00
-
cpe:2.3:a:perl:perl:1.01
-
cpe:2.3:a:perl:perl:1.20
-
cpe:2.3:a:perl:perl:1.21
-
cpe:2.3:a:perl:perl:1.22
-
cpe:2.3:a:perl:perl:1.31
-
cpe:2.3:a:perl:perl:1.32
-
cpe:2.3:a:perl:perl:1.40
-
cpe:2.3:a:perl:perl:1.41
-
cpe:2.3:a:perl:perl:1.42
-
cpe:2.3:a:perl:perl:1.43
-
cpe:2.3:a:perl:perl:1.44
-
cpe:2.3:a:perl:perl:1.45
-
cpe:2.3:a:perl:perl:1.46
-
cpe:2.3:a:perl:perl:1.47
-
cpe:2.3:a:perl:perl:1.48
-
cpe:2.3:a:perl:perl:1.49
-
cpe:2.3:a:perl:perl:2.0.0
-
cpe:2.3:a:perl:perl:2.1.0
-
cpe:2.3:a:perl:perl:2.1.1
-
cpe:2.3:a:perl:perl:2.1.2
-
cpe:2.3:a:perl:perl:2.1.3
-
cpe:2.3:a:perl:perl:2.10.0
-
cpe:2.3:a:perl:perl:2.10.1
-
cpe:2.3:a:perl:perl:2.10.2
-
cpe:2.3:a:perl:perl:2.10.3
-
cpe:2.3:a:perl:perl:2.10.4
-
cpe:2.3:a:perl:perl:2.10.5
-
cpe:2.3:a:perl:perl:2.10.6
-
cpe:2.3:a:perl:perl:2.10.7
-
cpe:2.3:a:perl:perl:2.11.0
-
cpe:2.3:a:perl:perl:2.11.1
-
cpe:2.3:a:perl:perl:2.11.2
-
cpe:2.3:a:perl:perl:2.11.3
-
cpe:2.3:a:perl:perl:2.11.4
-
cpe:2.3:a:perl:perl:2.11.5
-
cpe:2.3:a:perl:perl:2.11.6
-
cpe:2.3:a:perl:perl:2.11.7
-
cpe:2.3:a:perl:perl:2.11.8
-
cpe:2.3:a:perl:perl:2.12.0
-
cpe:2.3:a:perl:perl:2.13.0
-
cpe:2.3:a:perl:perl:2.14.0
-
cpe:2.3:a:perl:perl:2.14.1
-
cpe:2.3:a:perl:perl:2.15.0
-
cpe:2.3:a:perl:perl:2.15.1
-
cpe:2.3:a:perl:perl:2.16.0
-
cpe:2.3:a:perl:perl:2.16.1
-
cpe:2.3:a:perl:perl:2.17.0
-
cpe:2.3:a:perl:perl:2.17.1
-
cpe:2.3:a:perl:perl:2.17.2
-
cpe:2.3:a:perl:perl:2.18.0
-
cpe:2.3:a:perl:perl:2.18.1
-
cpe:2.3:a:perl:perl:2.2.0
-
cpe:2.3:a:perl:perl:2.2.1
-
cpe:2.3:a:perl:perl:2.2.2
-
cpe:2.3:a:perl:perl:2.3.0
-
cpe:2.3:a:perl:perl:2.4.0
-
cpe:2.3:a:perl:perl:2.5.0
-
cpe:2.3:a:perl:perl:2.5.1
-
cpe:2.3:a:perl:perl:2.6.0
-
cpe:2.3:a:perl:perl:2.6.1
-
cpe:2.3:a:perl:perl:2.6.2
-
cpe:2.3:a:perl:perl:2.6.3
-
cpe:2.3:a:perl:perl:2.6.4
-
cpe:2.3:a:perl:perl:2.6.5
-
cpe:2.3:a:perl:perl:2.6.6
-
cpe:2.3:a:perl:perl:2.7.0
-
cpe:2.3:a:perl:perl:2.7.1
-
cpe:2.3:a:perl:perl:2.7.2
-
cpe:2.3:a:perl:perl:2.8.0
-
cpe:2.3:a:perl:perl:2.8.1
-
cpe:2.3:a:perl:perl:2.8.2
-
cpe:2.3:a:perl:perl:2.8.3
-
cpe:2.3:a:perl:perl:2.8.4
-
cpe:2.3:a:perl:perl:2.8.5
-
cpe:2.3:a:perl:perl:2.8.6
-
cpe:2.3:a:perl:perl:2.8.7
-
cpe:2.3:a:perl:perl:2.8.8
-
cpe:2.3:a:perl:perl:2.9.0
-
cpe:2.3:a:perl:perl:2.9.1
-
cpe:2.3:a:perl:perl:2.9.2
-
cpe:2.3:a:perl:perl:3.000
-
cpe:2.3:a:perl:perl:3.044
-
cpe:2.3:a:perl:perl:4.0.00
-
cpe:2.3:a:perl:perl:4.0.36
-
cpe:2.3:a:perl:perl:5.000
-
cpe:2.3:a:perl:perl:5.000o
-
cpe:2.3:a:perl:perl:5.001
-
cpe:2.3:a:perl:perl:5.001n
-
cpe:2.3:a:perl:perl:5.002
-
cpe:2.3:a:perl:perl:5.002_01
-
cpe:2.3:a:perl:perl:5.003
-
cpe:2.3:a:perl:perl:5.003_01
-
cpe:2.3:a:perl:perl:5.003_02
-
cpe:2.3:a:perl:perl:5.003_03
-
cpe:2.3:a:perl:perl:5.003_04
-
cpe:2.3:a:perl:perl:5.003_05
-
cpe:2.3:a:perl:perl:5.003_07
-
cpe:2.3:a:perl:perl:5.003_08
-
cpe:2.3:a:perl:perl:5.003_09
-
cpe:2.3:a:perl:perl:5.003_10
-
cpe:2.3:a:perl:perl:5.003_11
-
cpe:2.3:a:perl:perl:5.003_12
-
cpe:2.3:a:perl:perl:5.003_13
-
cpe:2.3:a:perl:perl:5.003_14
-
cpe:2.3:a:perl:perl:5.003_15
-
cpe:2.3:a:perl:perl:5.003_16
-
cpe:2.3:a:perl:perl:5.003_17
-
cpe:2.3:a:perl:perl:5.003_18
-
cpe:2.3:a:perl:perl:5.003_19
-
cpe:2.3:a:perl:perl:5.003_20
-
cpe:2.3:a:perl:perl:5.003_21
-
cpe:2.3:a:perl:perl:5.003_22
-
cpe:2.3:a:perl:perl:5.003_23
-
cpe:2.3:a:perl:perl:5.003_24
-
cpe:2.3:a:perl:perl:5.003_25
-
cpe:2.3:a:perl:perl:5.003_26
-
cpe:2.3:a:perl:perl:5.003_27
-
cpe:2.3:a:perl:perl:5.003_28
-
cpe:2.3:a:perl:perl:5.003_90
-
cpe:2.3:a:perl:perl:5.003_91
-
cpe:2.3:a:perl:perl:5.003_92
-
cpe:2.3:a:perl:perl:5.003_93
-
cpe:2.3:a:perl:perl:5.003_94
-
cpe:2.3:a:perl:perl:5.003_95
-
cpe:2.3:a:perl:perl:5.003_96
-
cpe:2.3:a:perl:perl:5.003_97
-
cpe:2.3:a:perl:perl:5.003_97a
-
cpe:2.3:a:perl:perl:5.003_97b
-
cpe:2.3:a:perl:perl:5.003_97c
-
cpe:2.3:a:perl:perl:5.003_97d
-
cpe:2.3:a:perl:perl:5.003_97e
-
cpe:2.3:a:perl:perl:5.003_97f
-
cpe:2.3:a:perl:perl:5.003_97g
-
cpe:2.3:a:perl:perl:5.003_97h
-
cpe:2.3:a:perl:perl:5.003_97i
-
cpe:2.3:a:perl:perl:5.003_97j
-
cpe:2.3:a:perl:perl:5.003_98
-
cpe:2.3:a:perl:perl:5.003_99
-
cpe:2.3:a:perl:perl:5.003_99a
-
cpe:2.3:a:perl:perl:5.004
-
cpe:2.3:a:perl:perl:5.004_01
-
cpe:2.3:a:perl:perl:5.004_02
-
cpe:2.3:a:perl:perl:5.004_03
-
cpe:2.3:a:perl:perl:5.004_04