6.9 Medium
AI Score
Confidence
High
5 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:N/I:N/A:P
0.021 Low
EPSS
Percentile
88.8%
Perl 5.10.x allows context-dependent attackers to cause a denial of service (NULL pointer dereference and application crash) by leveraging an ability to inject arguments into a (1) getpeername, (2) readdir, (3) closedir, (4) getsockname, (5) rewinddir, (6) tell, or (7) telldir function call.
CPE | Name | Operator | Version |
---|---|---|---|
perl | eq | 5.10.0 rc2 | |
perl | eq | 5.10.1 | |
perl | eq | 5.10.1 rc1 | |
perl | eq | 5.10.0 | |
perl | eq | 5.10.0 rc1 | |
perl | eq | 5.10.1 rc2 |