The suidperl and sperl program do not give up root privileges when changing UIDs back to the original users, allowing root access.
1996-06-26T04:00:00.000
2025-04-03T01:03:51.193
Deferred
CVSSv2: 7.2 (HIGH)
AV:L/AC:L/Au:N/C:C/I:C/A:C
3.9
10.0
| Type | Vendor | Product | Version/Range | Vulnerable? |
|---|---|---|---|---|
| Operating System | apple | a_ux | 3.1.1 | Yes |
| Operating System | digital | osf_1 | 1.3 | Yes |
| Operating System | freebsd | freebsd | 2.0 | Yes |
| Operating System | freebsd | freebsd | 2.0.5 | Yes |
| Operating System | freebsd | freebsd | 2.1.0 | Yes |
| Operating System | hp | hp-ux | 8 | Yes |
| Operating System | hp | hp-ux | 9 | Yes |
| Operating System | hp | hp-ux | 10 | Yes |
| Operating System | ibm | aix | 3.2.5 | Yes |
| Operating System | ibm | aix | 4 | Yes |
| Operating System | linux | linux_kernel | 1.2.0 | Yes |
| Operating System | linux | linux_kernel | 2.0 | Yes |
| Operating System | nec | asl_ux_4800 | * | Yes |
| Operating System | nec | ews-ux_v | 4.2 | Yes |
| Operating System | nec | ews-ux_v | 4.2mp | Yes |
| Operating System | nec | up-ux_v | 4.2mp | Yes |