PT-2004-1529 · Perl Foundation+1 · Perl+1

Publicado

2004-04-06

Atualizado

2025-07-24

CVE-2004-0377

CVSS v2.0

Alta

Vetor

AV:N/AC:L/Au:N/C:C/I:C/A:C

Name of the Vulnerable Software and Affected Versions ActivePerl versions prior to 5.8.3 Perl versions prior to 5.8.3

Description The issue is related to a buffer overflow in the win32 stat function, which can be exploited by local or remote attackers to execute arbitrary commands. This can be achieved by using filenames that end in a backslash character.

Recommendations For ActivePerl versions prior to 5.8.3, update to version 5.8.3 or later to resolve the issue. For Perl versions prior to 5.8.3, update to version 5.8.3 or later to resolve the issue.

Correção

Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾

dbugs@ptsecurity.com

Identificadores relacionados

CVE-2004-0377

OPENSUSE-SU-2025:15377-1

Produtos afetados

Activeperl

Perl

PT-2004-1529 · Perl Foundation+1 · Perl+1

CVE-2004-0377

Identificadores relacionados

Produtos afetados

Referências · 9