Description
ProcessTable.pm in the Proc::ProcessTable module 0.45 for Perl, when TTY information caching is enabled, allows local users to overwrite arbitrary files via a symlink attack on /tmp/TTYDEVS.
References (8)
Core 8
Core References
Issue Tracking x_refsource_misc
http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=650500
Mailing List mailing-list
x_refsource_mlist
http://www.openwall.com/lists/oss-security/2011/11/30/2
Third Party Advisory, VDB Entry vdb-entry
x_refsource_bid
http://www.securityfocus.com/bid/50868
Issue Tracking x_refsource_misc
https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2011-4363
Third Party Advisory third-party-advisory
x_refsource_secunia
http://secunia.com/advisories/47015
Mailing List mailing-list
x_refsource_mlist
http://www.openwall.com/lists/oss-security/2011/11/30/3
Third Party Advisory, VDB Entry vdb-entry
x_refsource_osvdb
http://www.osvdb.org/77428
Various Sources x_refsource_confirm
https://rt.cpan.org/Public/Bug/Display.html?id=72862
Scores
EPSS
0.0030
EPSS Percentile
21.7%
Details
CWE
CWE-59
Status
published
Products (1)
frii/proc\
\ processtable
Published
Oct 07, 2012
Tracked Since
Feb 18, 2026