CVE-2011-0761

Name of the Vulnerable Software and Affected Versions Perl versions 5.10.x

Description The issue allows context-dependent attackers to cause a denial of service, resulting in a NULL pointer dereference and application crash. This can be achieved by injecting arguments into certain function calls, including getpeername, readdir, closedir, getsockname, rewinddir, tell, or telldir. The vulnerability is related to a NULL pointer dereference in the telldir function of the Perl interpreter, which can be exploited by a remote attacker to cause a denial of service.

Recommendations For Perl version 5.10.x, consider disabling the telldir function as a temporary workaround until a patch is available. Additionally, restrict the ability to inject arguments into the affected function calls to minimize the risk of exploitation.