in reply to ActivePerl sitecustomize.pl Local Privilege Escalation

Ah, interesting lesson in vulnerability report aging. None of the six different bug tracking sites linked to ever went back and updated the reports to show this _was_ fixed in release 818 (though at least a couple sites apparently did originally contact ActiveState to find out that that was planned). Is this normal, that there is _no_ followup?
  • Comment on Re: ActivePerl sitecustomize.pl Local Privilege Escalation

Replies are listed 'Best First'.
Re^2: ActivePerl sitecustomize.pl Local Privilege Escalation
by Mr. Muskrat (Canon) on Sep 29, 2006 at 17:05 UTC

    From the bottom of that page:

    "This entry was last updated on Jul 2, 2006. If you have additional information or corrections for this vulnerability please submit them to OSVDB Moderators."