CVE-2004-2286

Severity CVSS v4.0:
Pending analysis
Type:
Unavailable / Other
Publication date:
31/12/2004
Last modified:
03/04/2025

Description

Integer overflow in the duplication operator in ActivePerl allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a large multiplier, which may trigger a buffer overflow.

Vulnerable products and versions

CPE From Up to
cpe:2.3:a:activestate:activeperl:5.6.1:*:*:*:*:*:*:*
cpe:2.3:a:activestate:activeperl:5.6.1.630:*:*:*:*:*:*:*
cpe:2.3:a:activestate:activeperl:5.6.2:*:*:*:*:*:*:*
cpe:2.3:a:activestate:activeperl:5.6.3:*:*:*:*:*:*:*
cpe:2.3:a:activestate:activeperl:5.7.1:*:*:*:*:*:*:*
cpe:2.3:a:activestate:activeperl:5.7.2:*:*:*:*:*:*:*
cpe:2.3:a:activestate:activeperl:5.7.3:*:*:*:*:*:*:*
cpe:2.3:a:activestate:activeperl:5.8:*:*:*:*:*:*:*
cpe:2.3:a:activestate:activeperl:5.8.1:*:*:*:*:*:*:*
cpe:2.3:a:activestate:activeperl:5.8.3:*:*:*:*:*:*:*
cpe:2.3:a:larry_wall:perl:5.3:*:*:*:*:*:*:*
cpe:2.3:a:larry_wall:perl:5.4:*:*:*:*:*:*:*
cpe:2.3:a:larry_wall:perl:5.4.5:*:*:*:*:*:*:*
cpe:2.3:a:larry_wall:perl:5.5:*:*:*:*:*:*:*
cpe:2.3:a:larry_wall:perl:5.5.3:*:*:*:*:*:*:*