Vulnerability in Activestate Activeperl
CVE-2004-0377
Buffer overflow in the win32_stat function for (1) ActiveState's ActivePerl and (2) Larry Wall's Perl before 5.8.3 allows local or remote attackers to execute arbitrary commands via filenames that end in a backslash character.
EPSS: 0.069 (93.2th percentile) — read the EPSS interpretation.
Affected products
- Activestate Activeperl
- Larry_wall Perl
- N/a — versions n/a
References
- cve@mitre.org (vdb-entry, x_refsource_XF)
- cve@mitre.org (mailing-list, x_refsource_BUGTRAQ)
- cve@mitre.org (x_refsource_CONFIRM)
- cve@mitre.org (US Government Resource, x_refsource_CERT-VN, Patch, Third Party Advisory, third-party-advisory)
- cve@mitre.org (x_refsource_MISC)
- cve@mitre.org (Vendor Advisory, mailing-list, Patch, x_refsource_FULLDISC)