Published: 16/06/2009 Updated: 03/10/2018

CVSS v2 Base Score: 6.8 | Impact Score: 6.4 | Exploitability Score: 8.6

VMScore: 685

Vector: AV:N/AC:M/Au:N/C:P/I:P/A:P

Off-by-one error in the inflate function in Zlib.xs in Compress::Raw::Zlib Perl module prior to 2.017, as used in AMaViS, SpamAssassin, and possibly other products, allows context-dependent malicious users to cause a denial of service (hang or crash) via a crafted zlib compressed stream that triggers a heap-based buffer overflow, as exploited in the wild by Trojan.Downloader-71014 in June 2009.

Vulnerable Product	Search on Vulmon	Subscribe to Product
paul marquess compress-raw-zlib perl module 2.008
paul marquess compress-raw-zlib perl module 2.006
paul marquess compress-raw-zlib perl module 2.001
paul marquess compress-raw-zlib perl module
paul marquess compress-raw-zlib perl module 2.005
paul marquess compress-raw-zlib perl module 2.004
paul marquess compress-raw-zlib perl module 2.014
paul marquess compress-raw-zlib perl module 2.012
paul marquess compress-raw-zlib perl module 2.011
paul marquess compress-raw-zlib perl module 2.003
paul marquess compress-raw-zlib perl module 2.002
paul marquess compress-raw-zlib perl module 2.010
paul marquess compress-raw-zlib perl module 2.009

It was discovered that the Compress::Raw::Zlib Perl module incorrectly handled certain zlib compressed streams If a user or automated system were tricked into processing a specially crafted compressed stream or file, a remote attacker could crash the application, leading to a denial of service ...

Debian Bug report logs - #542777 CVE-2009-1884: Off-by-one error in the bzinflate function in Bzip2xs Package: libcompress-raw-bzip2-perl; Maintainer for libcompress-raw-bzip2-perl is Debian Perl Group <pkg-perl-maintainers@listsaliothdebianorg>; Source for libcompress-raw-bzip2-perl is src:libcompress-raw-bzip2-perl (PTS, build ...

Debian Bug report logs - #532736 CVE-2009-1391: Buffer overflow in Compress::Raw::Zlib Package: perl; Maintainer for perl is Niko Tyni <ntyni@debianorg>; Source for perl is src:perl (PTS, buildd, popcon) Reported by: Stefan Fritsch <sf@sfritschde> Date: Thu, 11 Jun 2009 08:03:01 UTC Severity: grave Tags: security ...

source: wwwsecurityfocuscom/bid/35307/info The 'Compress::Raw::Zlib' Perl module is prone to a remote code-execution vulnerability Successful exploits may allow remote attackers to execute arbitrary code or cause denial-of-service conditions in applications that use the vulnerable module Versions prior to 'Compress::Raw::Zlib' 2017 ...

CWE-189 http://article.gmane.org/gmane.mail.virus.amavis.user/33635 http://article.gmane.org/gmane.mail.virus.amavis.user/33638 http://www.securityfocus.com/bid/35307 http://secunia.com/advisories/35422 https://bugzilla.redhat.com/show_bug.cgi?id=504386 http://www.vupen.com/english/advisories/2009/1571 http://thread.gmane.org/gmane.mail.virus.amavis.user/33635 http://osvdb.org/55041 http://lists.opensuse.org/opensuse-security-announce/2009-07/msg00002.html http://secunia.com/advisories/35876 http://secunia.com/advisories/35685 https://www.redhat.com/archives/fedora-package-announce/2009-July/msg00607.html http://secunia.com/advisories/35689 http://www.mandriva.com/security/advisories?name=MDVSA-2009:157 http://security.gentoo.org/glsa/glsa-200908-07.xml https://bugs.gentoo.org/show_bug.cgi?id=273141 https://exchange.xforce.ibmcloud.com/vulnerabilities/51062 https://usn.ubuntu.com/794-1/https://usn.ubuntu.com/794-1/https://nvd.nist.gov https://www.exploit-db.com/exploits/33032/

CVE-2009-1391

Vulnerability Summary

Vendor Advisories

Exploits

References

Vulmon Search

About

Products

Connect