Perl
Theory
Perl scripting is a powerful tool used by system administrators and developers to automate tasks and streamline processes on Unix-like systems. However, like any software, perl scripts can be vulnerable to various security issues, which, if exploited, can lead to privilege escalation and unauthorized access.
Practice
Open() Command Injection
Assume the ruby script can be executed as root with sudo rights. If it use the open()
method and we controll its input, then the script is vulnerable to arbitrary code execution.
Check if we have control over the input of the vulnerable function
References
Last updated