Integer underflow in regcomp.c in Perl prior to 5.20, as used in Apple OS X prior to 10.10.5 and other products, allows context-dependent malicious users to execute arbitrary code or cause a denial of service (application crash) via a long digit string associated with an invalid backreference within a regular expression.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
apple mac os x |
||
perl perl 5.18.4 |