Perl

Perl

46 vulnerabilities found.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
4.3

CVE-2010-4777

  • EPSS 4.78%
  • Published 10.02.2014 18:15:08
  • Last modified 11.04.2025 00:51:21

The Perl_reg_numbered_buff_fetch function in Perl 5.10.0, 5.12.0, 5.14.0, and other versions, when running with debugging enabled, allows context-dependent attackers to cause a denial of service (assertion failure and application exit) via crafted in...

7.5

CVE-2013-1667

  • EPSS 4.82%
  • Published 14.03.2013 03:13:36
  • Last modified 11.04.2025 00:51:21

The rehash mechanism in Perl 5.8.2 through 5.16.x allows context-dependent attackers to cause a denial of service (memory consumption and crash) via a crafted hash key.

7.5

CVE-2012-6329

  • EPSS 81.23%
  • Published 04.01.2013 21:55:01
  • Last modified 11.04.2025 00:51:21

The _compile function in Maketext.pm in the Locale::Maketext implementation in Perl before 5.17.7 does not properly handle backslashes and fully qualified method names during compilation of bracket notation, which allows context-dependent attackers t...

4.3

CVE-2011-2728

  • EPSS 0.65%
  • Published 21.12.2012 05:46:14
  • Last modified 11.04.2025 00:51:21

The bsd_glob function in the File::Glob module for Perl before 5.14.2 allows context-dependent attackers to cause a denial of service (crash) via a glob expression with the GLOB_ALTDIRFUNC flag, which triggers an uninitialized pointer dereference.

7.5

CVE-2012-5195

  • EPSS 6.45%
  • Published 18.12.2012 00:55:01
  • Last modified 11.04.2025 00:51:21

Heap-based buffer overflow in the Perl_repeatcpy function in util.c in Perl 5.12.x before 5.12.5, 5.14.x before 5.14.3, and 5.15.x before 15.15.5 allows context-dependent attackers to cause a denial of service (memory consumption and crash) or possib...

5

CVE-2012-1151

  • EPSS 2.49%
  • Published 09.09.2012 21:55:05
  • Last modified 11.04.2025 00:51:21

Multiple format string vulnerabilities in dbdimp.c in DBD::Pg (aka DBD-Pg or libdbd-pg-perl) module before 2.19.0 for Perl allow remote PostgreSQL database servers to cause a denial of service (process crash) via format string specifiers in (1) a cra...

5.1

CVE-2011-2939

Exploit
  • EPSS 6.57%
  • Published 13.01.2012 18:55:02
  • Last modified 11.04.2025 00:51:21

Off-by-one error in the decode_xs function in Unicode/Unicode.xs in the Encode module before 2.44, as used in Perl before 5.15.6, might allow context-dependent attackers to cause a denial of service (memory corruption) via a crafted Unicode string, w...

5

CVE-2011-0761

Exploit
  • EPSS 3.02%
  • Published 13.05.2011 17:05:41
  • Last modified 11.04.2025 00:51:21

Perl 5.10.x allows context-dependent attackers to cause a denial of service (NULL pointer dereference and application crash) by leveraging an ability to inject arguments into a (1) getpeername, (2) readdir, (3) closedir, (4) getsockname, (5) rewinddi...

5

CVE-2011-1487

Exploit
  • EPSS 4.5%
  • Published 11.04.2011 18:55:03
  • Last modified 11.04.2025 00:51:21

The (1) lc, (2) lcfirst, (3) uc, and (4) ucfirst functions in Perl 5.10.x, 5.11.x, and 5.12.x through 5.12.3, and 5.13.x through 5.13.11, do not apply the taint attribute to the return value upon processing tainted input, which might allow context-de...

5

CVE-2010-1158

Exploit
  • EPSS 0.56%
  • Published 20.04.2010 15:30:00
  • Last modified 11.04.2025 00:51:21

Integer overflow in the regular expression engine in Perl 5.8.x allows context-dependent attackers to cause a denial of service (stack consumption and application crash) by matching a crafted regular expression against a long string.