Bugtraq mailing list archives

Secuirty Hole In Older Perl Installs...

From: krobson () USA NET (Ken Robson)
Date: Tue, 11 Mar 1997 08:41:23 -0000


Hi Folks,

Recently I have installed a couple of the distributions of Perl 5.001 from Hip onto NT boxes. Unfortunately Perl 
updates the system global variables and does the following to your path:-

        PATH=.;c:\perl;%PATH%

As you can see this makes it extremely easy to create trojan horse type attacks as it usually ensures that your current 
directory is read before any system directories, etc.

Thanks,

Ken.

PS - This does not happen in the beta of 5.003 from ActiveWare.

Current thread:

Re: Bug in connect() ? Frank Hofmann (Mar 07)
- Re: Bug in connect() ? Frank Hofmann (Mar 10)
- Lynx/MSIE denial-of-service Doctor Who (Mar 10)
  - Re: Lynx/MSIE denial-of-service Christopher Blizzard (Mar 10)
  - SGI Security Advisory 19970301-01-P - IRIX 5.x and 6.x fsdump Aleph One (Mar 10)
  - xterm segfaults from environment variables - too obvious David Luyer (Mar 10)
    - Secuirty Hole In Older Perl Installs... Ken Robson (Mar 11)
    - Re: xterm segfaults from environment variables - too obvious Alex Belits (Mar 11)
    - Division of Privilege (DoP) - Potential Security Vulnerability Aleph One (Mar 11)
    - runpipe v1.2 with security hole fix Aleph One (Mar 11)