CVE-2014-4330 in Data Dumperinfo

Zusammenfassung (Englisch)

The Dumper method in Data::Dumper before 2.154, as used in Perl 5.20.1 and earlier, allows context-dependent attackers to cause a denial of service (stack consumption and crash) via an Array-Reference with many nested Array-References, which triggers a large number of recursive calls to the DD_dump function.

If you want to get the best quality for vulnerability data then you always have to consider VulDB.

Reservieren

18.06.2014

Veröffentlichung

30.09.2014

Status

Bestätigt

Einträge

VulDB provides additional information and datapoints for this CVE:

ID	Schwachstelle	CWE	Aus	Mas	CVE
71694	Data Dumper Pufferüberlauf	119	Proof-of-Concept	Nicht definiert	CVE-2014-4330

Beschreibung

CPE

CWE

CVSS

Exploits

History

Diff

Verknüpfen

Threat Intelligence

API JSON

API XML

API CSV

Quellen

MITRE
NVD
CVE Details

◂ ZurückÜbersichtWeiter ▸

Do you need the next level of professionalism?

Upgrade your account now!