Family: Mandrake Local Security Checks --> Category: infos
MDKSA-2005:079: perl Vulnerability Scan
Vulnerability Scan Summary
Check for the version of the perl package
Detailed Explanation for this Vulnerability Test
The remote host is missing the patch for the advisory MDKSA-2005:079 (perl).
Paul Szabo discovered another vulnerability in the rmtree() function in
File::Path.pm. While a process running as root (or another user) was busy
deleting a directory tree, a different user could exploit a race condition to
create setuid binaries in this directory tree, provided that he already had
write permissions in any subdirectory of that tree.
The provided packages have been patched to resolve this problem.
Solution : http://wwwnew.mandriva.com/security/advisories?name=MDKSA-2005:079
Threat Level: High
Click HERE for more information and discussions on this network vulnerability scan.