CVE-2011-2728 — Vulnetix

Try Vulnetix Request Demo

CVE-2011-2728 PUBLISHED CVSS 4.300000190734863 MEDIUM

The bsd_glob function in the File::Glob module for Perl before 5.14.2 allows context-dependent attackers to cause a denial of service (crash) via a glob expression with the GLOB_ALTDIRFUNC flag, which triggers an uninitialized pointer dereference.

EPSS 0.55% · 67.6th percentile

Risk Scores

CVSS v2.0

4.300000190734863

EPSS Score

0.55%

67.6th percentile

Affected Products

Vendor	Product	Versions
perl	perl	5.14.0, 0, 1.00
n/a	n/a	n/a

Timeline

Dec 21, 2012 CVE Published
Feb 4, 2022 EPSS Score
Mar 28, 2022 EPSS Score
May 19, 2022 EPSS Score
Jul 10, 2022 EPSS Score
Sep 1, 2022 EPSS Score
Oct 23, 2022 EPSS Score
Dec 14, 2022 EPSS Score
Feb 4, 2023 EPSS Score
May 19, 2023 EPSS Score
Jul 10, 2023 EPSS Score
Aug 31, 2023 EPSS Score

References

http://www.securityfocus.com/bid/49858 technical
http://cpansearch.perl.org/src/FLORA/perl-5.14.2/pod/perldelta.pod url
http://perl5.git.perl.org/perl.git/commit/1af4051e077438976a4c12a0622feaf6715bec77 url
https://blogs.oracle.com/sunsecurity/entry/cve_2011_2728_denial_of1 url
FEDORA-2011-15484 vendor-advisory
46172 third-party-advisory
https://bugzilla.redhat.com/show_bug.cgi?id=742987 url
https://nvd.nist.gov/vuln/detail/CVE-2011-2728 advisory
http://www.oracle.com/technetwork/topics/security/thirdparty-patch-map-1482893.html advisory

Open in Interactive Console →