// For flags

CVE-2005-0156

Setuid perl - 'PerlIO_Debug()' Local Overflow

Severity Score

2.1
*CVSS v2

Exploit Likelihood

*EPSS

Affected Versions

*CPE

Public Exploits

2
*Multiple Sources

Exploited in Wild

-
*KEV

Decision

-
*SSVC
Descriptions

Buffer overflow in the PerlIO implementation in Perl 5.8.0, when installed with setuid support (sperl), allows local users to execute arbitrary code by setting the PERLIO_DEBUG variable and executing a Perl script whose full pathname contains a long directory tree.

*Credits: N/A
CVSS Scores
Attack Vector
Local
Attack Complexity
Low
Authentication
None
Confidentiality
None
Integrity
Partial
Availability
None
* Common Vulnerability Scoring System
SSVC
  • Decision:-
Exploitation
-
Automatable
-
Tech. Impact
-
* Organization's Worst-case Scenario
Timeline
  • 2005-01-27 CVE Reserved
  • 2005-02-07 CVE Published
  • 2005-02-07 First Exploit
  • 2023-03-08 EPSS Updated
  • 2024-08-07 CVE Updated
  • ---------- Exploited in Wild
  • ---------- KEV Due Date
CWE
CAPEC
Affected Vendors, Products, and Versions
Vendor Product Version Other Status
Vendor Product Version Other Status <-- --> Vendor Product Version Other Status
Larry Wall
Search vendor "Larry Wall"
Perl
Search vendor "Larry Wall" for product "Perl"
5.8.0
Search vendor "Larry Wall" for product "Perl" and version "5.8.0"
-
Affected
Larry Wall
Search vendor "Larry Wall"
Perl
Search vendor "Larry Wall" for product "Perl"
5.8.1
Search vendor "Larry Wall" for product "Perl" and version "5.8.1"
-
Affected
Larry Wall
Search vendor "Larry Wall"
Perl
Search vendor "Larry Wall" for product "Perl"
5.8.3
Search vendor "Larry Wall" for product "Perl" and version "5.8.3"
-
Affected
Larry Wall
Search vendor "Larry Wall"
Perl
Search vendor "Larry Wall" for product "Perl"
5.8.4
Search vendor "Larry Wall" for product "Perl" and version "5.8.4"
-
Affected
Larry Wall
Search vendor "Larry Wall"
Perl
Search vendor "Larry Wall" for product "Perl"
5.8.4.1
Search vendor "Larry Wall" for product "Perl" and version "5.8.4.1"
-
Affected
Larry Wall
Search vendor "Larry Wall"
Perl
Search vendor "Larry Wall" for product "Perl"
5.8.4.2
Search vendor "Larry Wall" for product "Perl" and version "5.8.4.2"
-
Affected
Larry Wall
Search vendor "Larry Wall"
Perl
Search vendor "Larry Wall" for product "Perl"
5.8.4.2.3
Search vendor "Larry Wall" for product "Perl" and version "5.8.4.2.3"
-
Affected
Larry Wall
Search vendor "Larry Wall"
Perl
Search vendor "Larry Wall" for product "Perl"
5.8.4.3
Search vendor "Larry Wall" for product "Perl" and version "5.8.4.3"
-
Affected
Larry Wall
Search vendor "Larry Wall"
Perl
Search vendor "Larry Wall" for product "Perl"
5.8.4.4
Search vendor "Larry Wall" for product "Perl" and version "5.8.4.4"
-
Affected
Larry Wall
Search vendor "Larry Wall"
Perl
Search vendor "Larry Wall" for product "Perl"
5.8.4.5
Search vendor "Larry Wall" for product "Perl" and version "5.8.4.5"
-
Affected
Sgi
Search vendor "Sgi"
Propack
Search vendor "Sgi" for product "Propack"
3.0
Search vendor "Sgi" for product "Propack" and version "3.0"
-
Affected
Ibm
Search vendor "Ibm"
Aix
Search vendor "Ibm" for product "Aix"
5.2
Search vendor "Ibm" for product "Aix" and version "5.2"
-
Affected
Ibm
Search vendor "Ibm"
Aix
Search vendor "Ibm" for product "Aix"
5.3
Search vendor "Ibm" for product "Aix" and version "5.3"
-
Affected
Redhat
Search vendor "Redhat"
Enterprise Linux
Search vendor "Redhat" for product "Enterprise Linux"
3.0
Search vendor "Redhat" for product "Enterprise Linux" and version "3.0"
advanced_server
Affected
Redhat
Search vendor "Redhat"
Enterprise Linux
Search vendor "Redhat" for product "Enterprise Linux"
3.0
Search vendor "Redhat" for product "Enterprise Linux" and version "3.0"
enterprise_server
Affected
Redhat
Search vendor "Redhat"
Enterprise Linux
Search vendor "Redhat" for product "Enterprise Linux"
3.0
Search vendor "Redhat" for product "Enterprise Linux" and version "3.0"
workstation_server
Affected
Redhat
Search vendor "Redhat"
Enterprise Linux Desktop
Search vendor "Redhat" for product "Enterprise Linux Desktop"
3.0
Search vendor "Redhat" for product "Enterprise Linux Desktop" and version "3.0"
-
Affected
Redhat
Search vendor "Redhat"
Fedora Core
Search vendor "Redhat" for product "Fedora Core"
core_3.0
Search vendor "Redhat" for product "Fedora Core" and version "core_3.0"
-
Affected
Suse
Search vendor "Suse"
Suse Linux
Search vendor "Suse" for product "Suse Linux"
8.0
Search vendor "Suse" for product "Suse Linux" and version "8.0"
-
Affected
Suse
Search vendor "Suse"
Suse Linux
Search vendor "Suse" for product "Suse Linux"
8.0
Search vendor "Suse" for product "Suse Linux" and version "8.0"
i386
Affected
Suse
Search vendor "Suse"
Suse Linux
Search vendor "Suse" for product "Suse Linux"
8.1
Search vendor "Suse" for product "Suse Linux" and version "8.1"
-
Affected
Suse
Search vendor "Suse"
Suse Linux
Search vendor "Suse" for product "Suse Linux"
8.2
Search vendor "Suse" for product "Suse Linux" and version "8.2"
-
Affected
Suse
Search vendor "Suse"
Suse Linux
Search vendor "Suse" for product "Suse Linux"
9.0
Search vendor "Suse" for product "Suse Linux" and version "9.0"
-
Affected
Suse
Search vendor "Suse"
Suse Linux
Search vendor "Suse" for product "Suse Linux"
9.0
Search vendor "Suse" for product "Suse Linux" and version "9.0"
x86_64
Affected
Suse
Search vendor "Suse"
Suse Linux
Search vendor "Suse" for product "Suse Linux"
9.1
Search vendor "Suse" for product "Suse Linux" and version "9.1"
-
Affected
Suse
Search vendor "Suse"
Suse Linux
Search vendor "Suse" for product "Suse Linux"
9.2
Search vendor "Suse" for product "Suse Linux" and version "9.2"
-
Affected
Trustix
Search vendor "Trustix"
Secure Linux
Search vendor "Trustix" for product "Secure Linux"
1.5
Search vendor "Trustix" for product "Secure Linux" and version "1.5"
-
Affected
Trustix
Search vendor "Trustix"
Secure Linux
Search vendor "Trustix" for product "Secure Linux"
2.0
Search vendor "Trustix" for product "Secure Linux" and version "2.0"
-
Affected
Trustix
Search vendor "Trustix"
Secure Linux
Search vendor "Trustix" for product "Secure Linux"
2.1
Search vendor "Trustix" for product "Secure Linux" and version "2.1"
-
Affected
Trustix
Search vendor "Trustix"
Secure Linux
Search vendor "Trustix" for product "Secure Linux"
2.2
Search vendor "Trustix" for product "Secure Linux" and version "2.2"
-
Affected
Ubuntu
Search vendor "Ubuntu"
Ubuntu Linux
Search vendor "Ubuntu" for product "Ubuntu Linux"
4.1
Search vendor "Ubuntu" for product "Ubuntu Linux" and version "4.1"
ia64
Affected
Ubuntu
Search vendor "Ubuntu"
Ubuntu Linux
Search vendor "Ubuntu" for product "Ubuntu Linux"
4.1
Search vendor "Ubuntu" for product "Ubuntu Linux" and version "4.1"
ppc
Affected