CVE-2012-5195

Published Dec 18, 2012

Last updated 3 months ago

CVSS info 7.5

Overview

Description: Heap-based buffer overflow in the Perl_repeatcpy function in util.c in Perl 5.12.x before 5.12.5, 5.14.x before 5.14.3, and 5.15.x before 15.15.5 allows context-dependent attackers to cause a denial of service (memory consumption and crash) or possibly execute arbitrary code via the 'x' string repeat operator.
Source: cve@mitre.org
NVD status: Modified

Risk scores

CVSS 2.0

Type: Primary
Base score: 7.5
Impact score: 6.4
Exploitability score: 10
Vector string: AV:N/AC:L/Au:N/C:P/I:P/A:P

Weaknesses

nvd@nist.gov: CWE-119

Hype score: Not currently trending

Configurations

[
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:a:perl:perl:5.12.0:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "9BC3F8EA-BE60-4EAB-A9B9-DB1368B5430C"
          },
          {
            "criteria": "cpe:2.3:a:perl:perl:5.12.0:rc0:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "C0D13359-AC5F-40CB-B906-8E03526CE045"
          },
          {
            "criteria": "cpe:2.3:a:perl:perl:5.12.0:rc1:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "A5E92FB2-7C21-4F06-AE3F-562551A758AF"
          },
          {
            "criteria": "cpe:2.3:a:perl:perl:5.12.0:rc2:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "D213529E-33EF-43D1-A673-3C94191427D8"
          },
          {
            "criteria": "cpe:2.3:a:perl:perl:5.12.0:rc3:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "E6539E09-4DC5-4C53-AFF1-70D06BBA9E7F"
          },
          {
            "criteria": "cpe:2.3:a:perl:perl:5.12.0:rc4:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "52D8DF08-AE73-4529-B212-CA31F02A719E"
          },
          {
            "criteria": "cpe:2.3:a:perl:perl:5.12.0:rc5:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "EA054FCE-FABC-4EB5-9759-F77C6F250B44"
          },
          {
            "criteria": "cpe:2.3:a:perl:perl:5.12.1:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "BB5DDFC6-4EDF-452A-B561-C9115D91FB3E"
          },
          {
            "criteria": "cpe:2.3:a:perl:perl:5.12.1:rc1:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "B1DBAB61-4BFB-4664-98CF-77C617F982A5"
          },
          {
            "criteria": "cpe:2.3:a:perl:perl:5.12.1:rc2:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "8A7580C2-44DE-48E5-AC26-A221537C95D8"
          },
          {
            "criteria": "cpe:2.3:a:perl:perl:5.12.2:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "54E04A5E-BE90-4A31-8C1D-09A91DD3E7DF"
          },
          {
            "criteria": "cpe:2.3:a:perl:perl:5.12.2:rc1:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "1A52ADD6-05DE-4A16-9745-D92CD5F46502"
          },
          {
            "criteria": "cpe:2.3:a:perl:perl:5.12.3:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "CFF99954-5B94-4092-83B9-7D17EEDB30A5"
          },
          {
            "criteria": "cpe:2.3:a:perl:perl:5.12.3:rc1:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "38A25AC3-1C81-4234-8B7E-0D59EA1F103B"
          },
          {
            "criteria": "cpe:2.3:a:perl:perl:5.12.3:rc2:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "93E670B7-6956-4A13-A2A8-F675C0B093FC"
          },
          {
            "criteria": "cpe:2.3:a:perl:perl:5.12.3:rc3:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "23F1C64E-1446-409D-9F53-1C03724A10E1"
          },
          {
            "criteria": "cpe:2.3:a:perl:perl:5.12.4:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "7A8E8FCF-4358-42D9-8C04-EBF78CC21583"
          },
          {
            "criteria": "cpe:2.3:a:perl:perl:5.14.0:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "8A968B30-8456-49C2-A9B0-6CF55CB3C7B4"
          },
          {
            "criteria": "cpe:2.3:a:perl:perl:5.14.0:rc1:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "66BF9787-C734-43DA-B8BF-FF6D6F4E802A"
          },
          {
            "criteria": "cpe:2.3:a:perl:perl:5.14.0:rc2:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "D94BF151-572F-4C50-8E47-9B8BCDD16A77"
          },
          {
            "criteria": "cpe:2.3:a:perl:perl:5.14.0:rc3:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "5114F054-E5AF-4905-83DD-459E1D56B5DE"
          },
          {
            "criteria": "cpe:2.3:a:perl:perl:5.14.1:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "91B91435-67DA-49E1-A37F-7839728F17BC"
          },
          {
            "criteria": "cpe:2.3:a:perl:perl:5.14.2:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "851028B9-65A4-4A4F-9C40-930B0B9A8797"
          }
        ],
        "operator": "OR"
      }
    ]
  }
]

Overview

Risk scores

CVSS 2.0

Weaknesses

Social media

Configurations

References