Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
The par_mktmpdir function in the PAR::Packer module before 1.012 for Perl creates temporary files in a directory with a predictable name without verifying ownership and permissions of this directory, which allows local users to overwrite files when another user extracts a PAR packed program. NOTE: a similar vulnerability was reported for PAR, but this has been assigned a different CVE identifier.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Perl 权限许可和访问控制问题漏洞
Vulnerability Description
Perl是PERL社区的一款通用、解释型、动态的跨平台编程语言。 Perl存在权限许可和访问控制问题漏洞。有本地访问权的攻击者可利用该漏洞用不安全的方法创建临时目录,执行符号链接的攻击,或者其他的攻击。
CVSS Information
N/A
Vulnerability Type
N/A