Back to search
CVE-2005-3962
Published: Dec 1, 2005
Modified: Aug 7, 2024
PUBLISHED
Description
Integer overflow in the format string functionality (Perl_sv_vcatpvfn) in Perl 5.9.2 and 5.8.6 Perl allows attackers to overwrite arbitrary memory and possibly execute arbitrary code via format string specifiers with large values, which causes an integer wrap and leads to a buffer overflow, as demonstrated using format string vulnerabilities in Perl applications.
| Vendor | Product | Versions |
|---|---|---|
n/a | n/a | affected n/a |
References
ADV-2006-4750
vdb-entry
x_refsource_VUPEN
oval:org.mitre.oval:def:1074
vdb-entry
signature
x_refsource_OVAL
VU#948385
third-party-advisory
x_refsource_CERT-VN
22255
vdb-entry
x_refsource_OSVDB
17941
third-party-advisory
x_refsource_SECUNIA
http://support.avaya.com/elmodocs2/security/ASA-2006-081.htm
x_refsource_CONFIRM
20051201 Perl format string integer wrap vulnerability
mailing-list
x_refsource_BUGTRAQ
HPSBTU02125
vendor-advisory
x_refsource_HP
20051201 Perl format string integer wrap vulnerability
mailing-list
x_refsource_FULLDISC
ADV-2005-2688
vdb-entry
x_refsource_VUPEN
http://www.dyadsecurity.com/perl-0002.html
x_refsource_MISC
21345
vdb-entry
x_refsource_OSVDB
15629
vdb-entry
x_refsource_BID
RHSA-2005:881
vendor-advisory
x_refsource_REDHAT
http://docs.info.apple.com/article.html?artnum=304829
x_refsource_CONFIRM
oval:org.mitre.oval:def:10598
vdb-entry
signature
x_refsource_OVAL
DSA-943
vendor-advisory
x_refsource_DEBIAN
[3.7] 20060105 007: SECURITY FIX: January 5, 2006
vendor-advisory
x_refsource_OPENBSD
17993
third-party-advisory
x_refsource_SECUNIA
18075
third-party-advisory
x_refsource_SECUNIA
FLSA-2006:176731
vendor-advisory
x_refsource_FEDORA
CLSA-2006:1056
vendor-advisory
x_refsource_CONECTIVA
OpenPKG-SA-2005.025
vendor-advisory
x_refsource_OPENPKG
SSRT061105
vendor-advisory
x_refsource_HP
ADV-2006-0771
vdb-entry
x_refsource_VUPEN
20894
third-party-advisory
x_refsource_SECUNIA
USN-222-1
vendor-advisory
x_refsource_UBUNTU
ADV-2006-2613
vdb-entry
x_refsource_VUPEN
18413
third-party-advisory
x_refsource_SECUNIA
23155
third-party-advisory
x_refsource_SECUNIA
17762
third-party-advisory
x_refsource_SECUNIA
18187
third-party-advisory
x_refsource_SECUNIA
TSLSA-2005-0070
vendor-advisory
x_refsource_TRUSTIX
18517
third-party-advisory
x_refsource_SECUNIA
18295
third-party-advisory
x_refsource_SECUNIA
SUSE-SA:2005:071
vendor-advisory
x_refsource_SUSE
18183
third-party-advisory
x_refsource_SECUNIA
RHSA-2005:880
vendor-advisory
x_refsource_REDHAT
APPLE-SA-2006-11-28
vendor-advisory
x_refsource_APPLE
TA06-333A
third-party-advisory
x_refsource_CERT
102192
vendor-advisory
x_refsource_SUNALERT
17952
third-party-advisory
x_refsource_SECUNIA
MDKSA-2005:225
vendor-advisory
x_refsource_MANDRAKE
http://www.ipcop.org/index.php?name=News&file=article&sid=41
x_refsource_CONFIRM
GLSA-200512-01
vendor-advisory
x_refsource_GENTOO
31208
third-party-advisory
x_refsource_SECUNIA
17802
third-party-advisory
x_refsource_SECUNIA
SUSE-SR:2005:029
vendor-advisory
x_refsource_SUSE
19041
third-party-advisory
x_refsource_SECUNIA
17844
third-party-advisory
x_refsource_SECUNIA
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now