Vulnerabilities
Vulnerable Software
Perl:  >> Perl  >> 1.0.16  Security Vulnerabilities
Off-by-one error in the bzinflate function in Bzip2.xs in the Compress-Raw-Bzip2 module before 2.018 for Perl allows context-dependent attackers to cause a denial of service (application hang or crash) via a crafted bzip2 compressed stream that triggers a buffer overflow, a related issue to CVE-2009-1391.
CVSS Score
4.3
EPSS Score
0.026
Published
2009-08-19
Heap-based buffer overflow in the DBD::Pg (aka DBD-Pg or libdbd-pg-perl) module 1.49 for Perl might allow context-dependent attackers to execute arbitrary code via unspecified input to an application that uses the getline and pg_getline functions to read database rows.
CVSS Score
7.5
EPSS Score
0.043
Published
2009-04-30
Perl 5.004_04 and earlier follows symbolic links when running with the -e option, which allows local users to overwrite arbitrary files via a symlink attack on the /tmp/perl-eaXXXXX file.
CVSS Score
5.5
EPSS Score
0.005
Published
1999-12-31


Contact Us

Shodan ® - All rights reserved