suidperl (aka sperl) does not properly cleanse the escape sequence "~!" before calling /bin/mail to send an error report, which allows local users to gain privileges by setting the "interactive" environmental variable and calling suidperl with a filename that contains the escape sequence.

"suidperl(aka sperl)在调用/bin/mail发送错误报告之前，未能正确净化 escape 序列 "~!"，这使本地用户能够通过设置"交互式"环境变量并使用包含 escape 序列的文件名调用suidperl来获得权限。

NVD 暂无评分

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

NVD 暂无漏洞类别信息

神龙GPT 暂无漏洞类别信息（请耐心等待）