Vulnerabilities > CVE-2004-2286 - Integer Overflow vulnerability in Multiple Perl Implementation Duplication Operator

047910
CVSS 7.5 - HIGH
Attack vector
NETWORK
Attack complexity
LOW
Privileges required
NONE
Confidentiality impact
PARTIAL
Integrity impact
PARTIAL
Availability impact
PARTIAL
network
low complexity
activestate
larry-wall
exploit available

Summary

Integer overflow in the duplication operator in ActivePerl allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a large multiplier, which may trigger a buffer overflow.

Exploit-Db

descriptionActivePerl 5.x,Larry Wall Perl 5.x Duplication Operator Integer Overflow Vulnerability. CVE-2004-2286 . Dos exploits for multiple platform
idEDB-ID:24130
last seen2016-02-02
modified2004-05-18
published2004-05-18
reporterMatt Murphy
sourcehttps://www.exploit-db.com/download/24130/
titleActivePerl 5.x / Larry Wall Perl 5.x - Duplication Operator Integer Overflow Vulnerability