Larry Wall: >> Perl Security Vulnerabilities
suidperl (aka sperl) does not properly cleanse the escape sequence "~!" before calling /bin/mail to send an error report, which allows local users to gain privileges by setting the "interactive" environmental variable and calling suidperl with a filename that contains the escape sequence.
CVSS Score
7.2
EPSS Score
0.003
Published
2000-10-20
Buffer overflow in suidperl (sperl), Perl 4.x and 5.x.
CVSS Score
7.2
EPSS Score
0.002
Published
1997-05-29
Page 2