CVE-2004-2286

Published Dec 31, 2004

Last updated 7 years ago

CVSS info 7.5

Overview

Description: Integer overflow in the duplication operator in ActivePerl allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a large multiplier, which may trigger a buffer overflow.
Source: cve@mitre.org
NVD status: Modified

Risk scores

CVSS 2.0

Type: Primary
Base score: 7.5
Impact score: 6.4
Exploitability score: 10
Vector string: AV:N/AC:L/Au:N/C:P/I:P/A:P

Weaknesses

nvd@nist.gov: NVD-CWE-Other

Hype score: Not currently trending

Configurations

[
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:a:activestate:activeperl:5.6.1:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "946C2AD2-EAEE-473E-9A3C-827FA3D89D2F"
          },
          {
            "criteria": "cpe:2.3:a:activestate:activeperl:5.6.1.630:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "4921CDAF-E4D5-4AED-8FD9-1E506105A5D1"
          },
          {
            "criteria": "cpe:2.3:a:activestate:activeperl:5.6.2:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "BA1DA7BF-DAB4-47F9-BE5B-808E8FFFC83E"
          },
          {
            "criteria": "cpe:2.3:a:activestate:activeperl:5.6.3:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "D5B92CD6-8E90-4737-B5E3-1AA61A030809"
          },
          {
            "criteria": "cpe:2.3:a:activestate:activeperl:5.7.1:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "4DA00BED-7C68-4BEA-93CE-8A064F4A8624"
          },
          {
            "criteria": "cpe:2.3:a:activestate:activeperl:5.7.2:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "FB52D21C-3164-40E3-80CC-3DE2F351CBC2"
          },
          {
            "criteria": "cpe:2.3:a:activestate:activeperl:5.7.3:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "658D6331-3F95-4D93-A244-4AD60B109CD3"
          },
          {
            "criteria": "cpe:2.3:a:activestate:activeperl:5.8:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "20B2F92E-AE6D-4C99-8835-798D52121D93"
          },
          {
            "criteria": "cpe:2.3:a:activestate:activeperl:5.8.1:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "8C0C48FF-44CF-4F62-BC1E-D8C6AE6A774E"
          },
          {
            "criteria": "cpe:2.3:a:activestate:activeperl:5.8.3:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "AE970B5C-AB40-46B8-A03C-C5597C06A438"
          },
          {
            "criteria": "cpe:2.3:a:larry_wall:perl:5.3:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "C6D64BFC-E974-460C-A635-7319676049A7"
          },
          {
            "criteria": "cpe:2.3:a:larry_wall:perl:5.4:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "8FBFF691-770C-4181-BB40-14BD1B90F705"
          },
          {
            "criteria": "cpe:2.3:a:larry_wall:perl:5.4.5:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "C7EF5BB8-FFEA-4927-A289-3C9A7ADEC6BB"
          },
          {
            "criteria": "cpe:2.3:a:larry_wall:perl:5.5:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "AB034FE1-9575-45B4-9E8F-1B068E3ED1CC"
          },
          {
            "criteria": "cpe:2.3:a:larry_wall:perl:5.5.3:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "D6D7F3D2-FE93-4F2F-B8FB-F2A7869502FF"
          },
          {
            "criteria": "cpe:2.3:a:larry_wall:perl:5.6:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "EA6112C9-0E67-47D3-94A7-0D0254ECF27F"
          },
          {
            "criteria": "cpe:2.3:a:larry_wall:perl:5.6.1:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "7530A863-0FFF-4332-8E6F-4329AB4DE5FC"
          },
          {
            "criteria": "cpe:2.3:a:larry_wall:perl:5.8.0:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "3D30E072-9E6A-49B4-A5C7-63A328598A68"
          },
          {
            "criteria": "cpe:2.3:a:larry_wall:perl:5.8.1:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "434F0580-985F-42AF-BA10-FAB7E2C23ED0"
          },
          {
            "criteria": "cpe:2.3:a:larry_wall:perl:5.8.3:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "18B179E0-C843-46C9-AAD2-78E998175E41"
          }
        ],
        "operator": "OR"
      }
    ]
  }
]

Overview

Risk scores

CVSS 2.0

Weaknesses

Social media

Configurations

References