Summary
The host is installed with Active Perl and is prone to denial of service vulnerability.
Impact
Successful exploitation will allow attackers to cause denial of service (memory consumption) via specially-crafted hash key.
Impact Level: Application
Solution
Upgrade to Active Perl version 5.16.3 or 5.14.4 or later, For updates refer to http://www.perl.org/get.html
Insight
Flaw is due to an error when rehashing user-supplied input.
Affected
Active Perl versions 5.8.2 before 5.14.4 and 5.15 before 5.16.3 on Windows
References
Severity
Classification
-
CVE CVE-2013-1667 -
CVSS Base Score: 7.5
AV:N/AC:L/Au:N/C:P/I:P/A:P
Related Vulnerabilities
- CA ARCserve Backup RPC Services Multiple Vulnerabilities (Windows)
- Google Chrome Multiple Denial of Service Vulnerabilities - March12 (Mac OS X)
- ClamAV 'find_stream_bounds()' PDF File Processing Denial Of Service Vulnerability
- Adobe Flash Media Server Multiple Denial of Service Vulnerabilities
- Apple QuickTime Multiple Denial Of Service Vulnerabilities (Win)