Published: 29/10/2009 Updated: 17/08/2017

CVSS v2 Base Score: 5 | Impact Score: 2.9 | Exploitability Score: 10

VMScore: 445

Vector: AV:N/AC:L/Au:N/C:N/I:N/A:P

Perl 5.10.1 allows context-dependent malicious users to cause a denial of service (application crash) via a UTF-8 character with a large, invalid codepoint, which is not properly handled during a regular-expression match.

Vulnerable Product	Search on Vulmon	Subscribe to Product
perl perl 5.10.1

Debian Bug report logs - #644169 libapache2-mod-perl2: PerlOptions -Sections not permitted in server config, but should be Package: libapache2-mod-perl2; Maintainer for libapache2-mod-perl2 is Debian Perl Group <pkg-perl-maintainers@listsaliothdebianorg>; Source for libapache2-mod-perl2 is src:libapache2-mod-perl2 (PTS, buildd, p ...

Debian Bug report logs - #552291 CVE-2009-3626: DoS in Unicode processing Package: perl-base; Maintainer for perl-base is Niko Tyni <ntyni@debianorg>; Source for perl-base is src:perl (PTS, buildd, popcon) Reported by: Moritz Muehlenhoff <jmm@debianorg> Date: Sun, 25 Oct 2009 08:42:02 UTC Severity: grave Tags: con ...

NVD-CWE-Other http://securitytracker.com/id?1023077 http://www.vupen.com/english/advisories/2009/3023 http://perl5.git.perl.org/perl.git/commit/0abd0d78a73da1c4d13b1c700526b7e5d03b32d4 http://www.securityfocus.com/bid/36812 https://issues.apache.org/SpamAssassin/show_bug.cgi?id=6225 http://rt.perl.org/rt3/Ticket/Attachment/617489/295383/http://www.osvdb.org/59283 http://www.openwall.com/lists/oss-security/2009/10/23/8 http://secunia.com/advisories/37144 http://rt.perl.org/rt3/Public/Bug/Display.html?id=69973 https://exchange.xforce.ibmcloud.com/vulnerabilities/53939 https://nvd.nist.gov https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=644169

CVE-2009-3626

Vulnerability Summary

Vendor Advisories

References

Vulmon Search

About

Products

Connect