CVE-2011-4114

Опубликовано: 13 янв. 2012

Источник: ubuntu

Приоритет: low

EPSS Низкий

CVSS2: 3.3

Описание

The par_mktmpdir function in the PAR::Packer module before 1.012 for Perl creates temporary files in a directory with a predictable name without verifying ownership and permissions of this directory, which allows local users to overwrite files when another user extracts a PAR packed program. NOTE: a similar vulnerability was reported for PAR, but this has been assigned a different CVE identifier.

Релиз	Статус	Примечание
devel	not-affected	1.012-1
hardy	ignored	end of life
lucid	ignored	end of life
maverick	ignored	end of life
natty	ignored	end of life
oneiric	ignored	end of life
precise	not-affected	1.012-1
quantal	not-affected	1.012-1
raring	not-affected	1.012-1
saucy	not-affected	1.012-1

Показывать по

Релиз	Статус	Примечание
devel	not-affected	see CVE-2011-5060
hardy	not-affected	see CVE-2011-5060
lucid	not-affected	see CVE-2011-5060
maverick	not-affected	see CVE-2011-5060
natty	not-affected	see CVE-2011-5060
oneiric	not-affected	see CVE-2011-5060
precise	not-affected	see CVE-2011-5060
quantal	not-affected	see CVE-2011-5060
raring	not-affected	see CVE-2011-5060
saucy	not-affected	see CVE-2011-5060

Показывать по

Ссылки на источники

https://www.cve.org/CVERecord?id=CVE-2011-4114

EPSS

Процентиль: 24%

0.00082

Низкий

3.3 Low

CVSS2

Связанные уязвимости

CVE-2011-4114

nvd

около 14 лет назад

CVE-2011-4114

debian

около 14 лет назад

The par_mktmpdir function in the PAR::Packer module before 1.012 for P ...

GHSA-gxwf-286g-rc8g

github

больше 3 лет назад

EPSS

Процентиль: 24%

0.00082

Низкий

3.3 Low

CVSS2

CVE-2011-4114

Описание

Пакет libpar-packer-perl

Пакет libpar-perl

Ссылки на источники

Связанные уязвимости