Skip to main content

CVE-2004-0452

Severity Low
Score 2.6/10

Summary

Race condition in the rmtree function in the File::Path module in Perl 5.6.1 and 5.8.4 sets read/write permissions for the world, which allows local users to delete arbitrary files and directories, and possibly read files and directories, via a symlink attack.

  • HIGH
  • LOCAL
  • NONE
  • PARTIAL
  • NONE
  • PARTIAL

References

Advisory Timeline

  • Published