Vulnerability in Activestate Activeperl
CVE-2004-2286
Integer overflow in the duplication operator in ActivePerl allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a large multiplier, which may trigger a buffer overflow.
EPSS: 0.080 (94.0th percentile) — read the EPSS interpretation.
Affected products
- Activestate Activeperl — versions 5.6.1, 5.6.1.630, 5.6.2
- Larry_wall Perl — versions 5.3, 5.4, 5.4.5
- N/a — versions n/a
References
- cve@mitre.org (vdb-entry, x_refsource_XF)
- cve@mitre.org (Exploit, vdb-entry, x_refsource_BID)
- cve@mitre.org (mailing-list, x_refsource_FULLDISC)