CVE-2007-5116

Опубликовано: 07 нояб. 2007

Источник: nvd

CVSS2: 7.5

EPSS Средний

Описание

Buffer overflow in the polymorphic opcode support in the Regular Expression Engine (regcomp.c) in Perl 5.8 allows context-dependent attackers to execute arbitrary code by switching from byte to Unicode (UTF) characters in a regular expression.

Ссылки

Уязвимые конфигурации

Конфигурация 1

Одновременно

Одно из

cpe:2.3:o:debian:debian_linux:3.1:*:*:*:*:*:*:*

cpe:2.3:o:debian:debian_linux:4.0:*:*:*:*:*:*:*

cpe:2.3:o:debian:debian_linux:4.0:*:alpha:*:*:*:*:*

cpe:2.3:o:debian:debian_linux:4.0:*:amd64:*:*:*:*:*

cpe:2.3:o:debian:debian_linux:4.0:*:arm:*:*:*:*:*

cpe:2.3:o:debian:debian_linux:4.0:*:hppa:*:*:*:*:*

cpe:2.3:o:debian:debian_linux:4.0:*:ia-32:*:*:*:*:*

cpe:2.3:o:debian:debian_linux:4.0:*:ia-64:*:*:*:*:*

cpe:2.3:o:debian:debian_linux:4.0:*:m68k:*:*:*:*:*

cpe:2.3:o:debian:debian_linux:4.0:*:mips:*:*:*:*:*

cpe:2.3:o:debian:debian_linux:4.0:*:mipsel:*:*:*:*:*

cpe:2.3:o:debian:debian_linux:4.0:*:powerpc:*:*:*:*:*

cpe:2.3:o:debian:debian_linux:4.0:*:s390:*:*:*:*:*

cpe:2.3:o:debian:debian_linux:4.0:*:sparc:*:*:*:*:*

cpe:2.3:o:mandrakesoft:mandrake_linux:2007:*:*:*:*:*:*:*

cpe:2.3:o:mandrakesoft:mandrake_linux:2007:*:x86_64:*:*:*:*:*

cpe:2.3:o:mandrakesoft:mandrake_linux:2007.1:*:*:*:*:*:*:*

cpe:2.3:o:mandrakesoft:mandrake_linux:2007.1:*:x86_64:*:*:*:*:*

cpe:2.3:o:mandrakesoft:mandrake_linux:2008.0:*:*:*:*:*:*:*

cpe:2.3:o:mandrakesoft:mandrake_linux:2008.0:*:x86_64:*:*:*:*:*

cpe:2.3:o:mandrakesoft:mandrake_linux_corporate_server:3.0:*:*:*:*:*:*:*

cpe:2.3:o:mandrakesoft:mandrake_linux_corporate_server:3.0:*:x86_64:*:*:*:*:*

cpe:2.3:o:mandrakesoft:mandrake_linux_corporate_server:4.0:*:*:*:*:*:*:*

cpe:2.3:o:mandrakesoft:mandrake_linux_corporate_server:4.0:*:x86_64:*:*:*:*:*

cpe:2.3:o:redhat:enterprise_linux:3.0:*:as:*:*:*:*:*

cpe:2.3:o:redhat:enterprise_linux:3.0:*:es:*:*:*:*:*

cpe:2.3:o:redhat:enterprise_linux:3.0:*:ws:*:*:*:*:*

cpe:2.3:o:redhat:enterprise_linux:4.0:*:as:*:*:*:*:*

cpe:2.3:o:redhat:enterprise_linux:4.0:*:es:*:*:*:*:*

cpe:2.3:o:redhat:enterprise_linux:4.0:*:ws:*:*:*:*:*

cpe:2.3:o:redhat:enterprise_linux:5.0:*:client:*:*:*:*:*

cpe:2.3:o:redhat:enterprise_linux:5.0:*:server:*:*:*:*:*

cpe:2.3:o:redhat:enterprise_linux_desktop:3.0:*:*:*:*:*:*:*

cpe:2.3:o:redhat:enterprise_linux_desktop:4.0:*:*:*:*:*:*:*

cpe:2.3:o:redhat:linux_advanced_workstation:2.1:*:ia64:*:*:*:*:*

cpe:2.3:o:redhat:linux_advanced_workstation:2.1:*:itanium_processor:*:*:*:*:*

cpe:2.3:o:rpath:rpath_linux:1:*:*:*:*:*:*:*

Одно из

cpe:2.3:a:larry_wall:perl:5.8.0:*:*:*:*:*:*:*

cpe:2.3:a:larry_wall:perl:5.8.1:*:*:*:*:*:*:*

cpe:2.3:a:larry_wall:perl:5.8.3:*:*:*:*:*:*:*

cpe:2.3:a:larry_wall:perl:5.8.4:*:*:*:*:*:*:*

cpe:2.3:a:larry_wall:perl:5.8.4.1:*:*:*:*:*:*:*

cpe:2.3:a:larry_wall:perl:5.8.4.2:*:*:*:*:*:*:*

cpe:2.3:a:larry_wall:perl:5.8.4.2.3:*:*:*:*:*:*:*

cpe:2.3:a:larry_wall:perl:5.8.4.3:*:*:*:*:*:*:*

cpe:2.3:a:larry_wall:perl:5.8.4.4:*:*:*:*:*:*:*

cpe:2.3:a:larry_wall:perl:5.8.4.5:*:*:*:*:*:*:*

cpe:2.3:a:larry_wall:perl:5.8.6:*:*:*:*:*:*:*

cpe:2.3:a:mandrakesoft:mandrake_multi_network_firewall:2.0:*:*:*:*:*:*:*

cpe:2.3:a:openpkg:openpkg:current:*:*:*:*:*:*:*

cpe:2.3:o:redhat:enterprise_linux:1.0:*:application_stack:*:*:*:*:*

EPSS

Процентиль: 93%

0.11413

Средний

7.5 High

CVSS2

Дефекты

CWE-119

Связанные уязвимости

CVE-2007-5116

ubuntu

больше 17 лет назад

CVE-2007-5116

redhat

больше 17 лет назад

CVE-2007-5116

debian

больше 17 лет назад

Buffer overflow in the polymorphic opcode support in the Regular Expre ...

GHSA-3wp4-6pwm-vcxj

github

около 3 лет назад

ELSA-2007-0966

oracle-oval

больше 17 лет назад

ELSA-2007-0966: Important: perl security update (IMPORTANT)

EPSS

Процентиль: 93%

0.11413

Средний

7.5 High

CVSS2

Дефекты

CWE-119