Larry Wall

larry_wall

12 CVEs • 1 product

Products (1)

Click to collapse

Toggle

CVEs (12)

CVE VENDORS PRODUCTS UPDATED PUBLISHED CVSS
CVE-2007-5116 4Larry Wall MandrakesoftOpenpkg+1 more 4Enterprise Linux Mandrake Multi Network FirewallOpenpkg+1 more Apr 23, 2026 Nov 7, 2007 N/A· v4 N/A· v3 7.5 HIGH· v2 Buffer overflow in the polymorphic opcode support in the Regular Expression Engine (regcomp.c) in Perl 5.8 allows context-dependent attackers to execute arbitrary code by switching from byte to Unicode (UTF) characters i...Show more Buffer overflow in the polymorphic opcode support in the Regular Expression Engine (regcomp.c) in Perl 5.8 allows context-dependent attackers to execute arbitrary code by switching from byte to Unicode (UTF) characters in a regular expression.Show less
CVE-2005-4278 1Larry Wall 1Perl Apr 16, 2026 Dec 16, 2005 N/A· v4 N/A· v3 7.2 HIGH· v2 Untrusted search path vulnerability in Perl before 5.8.7-r1 on Gentoo Linux allows local users in the portage group to gain privileges via a malicious shared object in the Portage temporary build directory, which is part...Show more Untrusted search path vulnerability in Perl before 5.8.7-r1 on Gentoo Linux allows local users in the portage group to gain privileges via a malicious shared object in the Portage temporary build directory, which is part of the RUNPATH.Show less
CVE-2005-0448 1Larry Wall 1Perl Apr 16, 2026 May 2, 2005 N/A· v4 N/A· v3 1.2 LOW· v2 Race condition in the rmtree function in File::Path.pm in Perl before 5.8.4 allows local users to create arbitrary setuid binaries in the tree being deleted, a different vulnerability than CVE-2004-0452.
CVE-2005-0155 1Larry Wall 1Perl Apr 16, 2026 May 2, 2005 N/A· v4 N/A· v3 4.6 MEDIUM· v2 The PerlIO implementation in Perl 5.8.0, when installed with setuid support (sperl), allows local users to create arbitrary files via the PERLIO_DEBUG variable.
CVE-2004-0976 1Larry Wall 1Perl Apr 16, 2026 Feb 9, 2005 N/A· v4 N/A· v3 2.1 LOW· v2 Multiple scripts in the perl package in Trustix Secure Linux 1.5 through 2.1 and other operating systems allows local users to overwrite files via a symlink attack on temporary files.
CVE-2005-0156 7Ibm Larry WallRedhat+4 more 9Aix Enterprise LinuxEnterprise Linux Desktop+6 more Apr 16, 2026 Feb 7, 2005 N/A· v4 N/A· v3 2.1 LOW· v2 Buffer overflow in the PerlIO implementation in Perl 5.8.0, when installed with setuid support (sperl), allows local users to execute arbitrary code by setting the PERLIO_DEBUG variable and executing a Perl script whose...Show more Buffer overflow in the PerlIO implementation in Perl 5.8.0, when installed with setuid support (sperl), allows local users to execute arbitrary code by setting the PERLIO_DEBUG variable and executing a Perl script whose full pathname contains a long directory tree.Show less
CVE-2004-2286 2Activestate Larry Wall 2Activeperl Perl Apr 16, 2026 Dec 31, 2004 N/A· v4 N/A· v3 7.5 HIGH· v2 Integer overflow in the duplication operator in ActivePerl allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a large multiplier, which may trigger a buffer overflow.
CVE-2004-0452 1Larry Wall 1Perl Apr 16, 2026 Dec 21, 2004 N/A· v4 N/A· v3 2.6 LOW· v2 Race condition in the rmtree function in the File::Path module in Perl 5.6.1 and 5.8.4 sets read/write permissions for the world, which allows local users to delete arbitrary files and directories, and possibly read file...Show more Race condition in the rmtree function in the File::Path module in Perl 5.6.1 and 5.8.4 sets read/write permissions for the world, which allows local users to delete arbitrary files and directories, and possibly read files and directories, via a symlink attack.Show less
CVE-2004-0377 2Activestate Larry Wall 2Activeperl Perl Apr 16, 2026 May 4, 2004 N/A· v4 N/A· v3 10.0 HIGH· v2 Buffer overflow in the win32_stat function for (1) ActiveState's ActivePerl and (2) Larry Wall's Perl before 5.8.3 allows local or remote attackers to execute arbitrary commands via filenames that end in a backslash char...Show more Buffer overflow in the win32_stat function for (1) ActiveState's ActivePerl and (2) Larry Wall's Perl before 5.8.3 allows local or remote attackers to execute arbitrary commands via filenames that end in a backslash character.Show less
CVE-2003-0900 1Larry Wall 1Perl Apr 16, 2026 Dec 31, 2003 N/A· v4 N/A· v3 5.0 MEDIUM· v2 Perl 5.8.1 on Fedora Core does not properly initialize the random number generator when forking, which makes it easier for attackers to predict random numbers.
CVE-2000-0703 1Larry Wall 1Perl Apr 16, 2026 Oct 20, 2000 N/A· v4 N/A· v3 7.2 HIGH· v2 suidperl (aka sperl) does not properly cleanse the escape sequence "~!" before calling /bin/mail to send an error report, which allows local users to gain privileges by setting the "interactive" environmental variable an...Show more suidperl (aka sperl) does not properly cleanse the escape sequence "~!" before calling /bin/mail to send an error report, which allows local users to gain privileges by setting the "interactive" environmental variable and calling suidperl with a filename that contains the escape sequence.Show less
CVE-1999-0034 4Bsdi Larry WallRedhat+1 more 4Bsd Os FreewareLinux+1 more Apr 16, 2026 May 29, 1997 N/A· v4 N/A· v3 7.2 HIGH· v2 Buffer overflow in suidperl (sperl), Perl 4.x and 5.x.