CVE-2013-1667

  1. OpenCVE
  2. Vulnerabilities (CVE)
  3. CVE-2013-1667
The rehash mechanism in Perl 5.8.2 through 5.16.x allows context-dependent attackers to cause a denial of service (memory consumption and crash) via a crafted hash key.

7.5 /10

CVSS v2.0 : HIGH

V2 Legend

Vector : AV:N/AC:L/Au:N/C:P/I:P/A:P

Exploitability : 10.0 / Impact : 6.4

Access Vector NETWORK

Access Complexity LOW

Authentication NONE

Confidentiality Impact PARTIAL

Integrity Impact PARTIAL

Availability Impact PARTIAL

References
Link Resource
http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=702296
http://kb.juniper.net/InfoCenter/index?page=content&id=JSA10705
http://kb.juniper.net/InfoCenter/index?page=content&id=JSA10735
http://lists.apple.com/archives/security-announce/2013/Oct/msg00004.html
http://marc.info/?l=bugtraq&m=137891988921058&w=2
http://marc.info/?l=bugtraq&m=137891988921058&w=2
http://osvdb.org/90892
http://perl5.git.perl.org/perl.git/commitdiff/6e79fe5
http://perl5.git.perl.org/perl.git/commitdiff/9d83adc
http://perl5.git.perl.org/perl.git/commitdiff/d59e31f
http://rhn.redhat.com/errata/RHSA-2013-0685.html
http://secunia.com/advisories/52472 Vendor Advisory
http://secunia.com/advisories/52499 Vendor Advisory
http://www.debian.org/security/2013/dsa-2641
http://www.mandriva.com/security/advisories?name=MDVSA-2013:113
http://www.nntp.perl.org/group/perl.perl5.porters/2013/03/msg199755.html
http://www.oracle.com/technetwork/topics/security/ovmbulletinjul2016-3090546.html
http://www.securityfocus.com/bid/58311
http://www.ubuntu.com/usn/USN-1770-1
https://bugzilla.redhat.com/show_bug.cgi?id=912276
https://exchange.xforce.ibmcloud.com/vulnerabilities/82598
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A18771
https://wiki.mageia.org/en/Support/Advisories/MGASA-2013-0094
http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=702296
http://kb.juniper.net/InfoCenter/index?page=content&id=JSA10705
http://kb.juniper.net/InfoCenter/index?page=content&id=JSA10735
http://lists.apple.com/archives/security-announce/2013/Oct/msg00004.html
http://marc.info/?l=bugtraq&m=137891988921058&w=2
http://marc.info/?l=bugtraq&m=137891988921058&w=2
http://osvdb.org/90892
http://perl5.git.perl.org/perl.git/commitdiff/6e79fe5
http://perl5.git.perl.org/perl.git/commitdiff/9d83adc
http://perl5.git.perl.org/perl.git/commitdiff/d59e31f
http://rhn.redhat.com/errata/RHSA-2013-0685.html
http://secunia.com/advisories/52472 Vendor Advisory
http://secunia.com/advisories/52499 Vendor Advisory
http://www.debian.org/security/2013/dsa-2641
http://www.mandriva.com/security/advisories?name=MDVSA-2013:113
http://www.nntp.perl.org/group/perl.perl5.porters/2013/03/msg199755.html
http://www.oracle.com/technetwork/topics/security/ovmbulletinjul2016-3090546.html
http://www.securityfocus.com/bid/58311
http://www.ubuntu.com/usn/USN-1770-1
https://bugzilla.redhat.com/show_bug.cgi?id=912276
https://exchange.xforce.ibmcloud.com/vulnerabilities/82598
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A18771
https://wiki.mageia.org/en/Support/Advisories/MGASA-2013-0094
Configurations

Configuration 1 (hide)

OR cpe:2.3:a:perl:perl:5.8.2:*:*:*:*:*:*:*
cpe:2.3:a:perl:perl:5.8.3:*:*:*:*:*:*:*
cpe:2.3:a:perl:perl:5.8.4:*:*:*:*:*:*:*
cpe:2.3:a:perl:perl:5.8.5:*:*:*:*:*:*:*
cpe:2.3:a:perl:perl:5.8.6:*:*:*:*:*:*:*
cpe:2.3:a:perl:perl:5.8.7:*:*:*:*:*:*:*
cpe:2.3:a:perl:perl:5.8.8:*:*:*:*:*:*:*
cpe:2.3:a:perl:perl:5.8.9:*:*:*:*:*:*:*
cpe:2.3:a:perl:perl:5.8.10:*:*:*:*:*:*:*
cpe:2.3:a:perl:perl:5.10:*:*:*:*:*:*:*
cpe:2.3:a:perl:perl:5.10.0:*:*:*:*:*:*:*
cpe:2.3:a:perl:perl:5.10.0:rc1:*:*:*:*:*:*
cpe:2.3:a:perl:perl:5.10.0:rc2:*:*:*:*:*:*
cpe:2.3:a:perl:perl:5.10.1:*:*:*:*:*:*:*
cpe:2.3:a:perl:perl:5.10.1:rc1:*:*:*:*:*:*
cpe:2.3:a:perl:perl:5.10.1:rc2:*:*:*:*:*:*
cpe:2.3:a:perl:perl:5.11.0:*:*:*:*:*:*:*
cpe:2.3:a:perl:perl:5.11.1:*:*:*:*:*:*:*
cpe:2.3:a:perl:perl:5.11.2:*:*:*:*:*:*:*
cpe:2.3:a:perl:perl:5.11.3:*:*:*:*:*:*:*
cpe:2.3:a:perl:perl:5.11.4:*:*:*:*:*:*:*
cpe:2.3:a:perl:perl:5.11.5:*:*:*:*:*:*:*
cpe:2.3:a:perl:perl:5.12.0:*:*:*:*:*:*:*
cpe:2.3:a:perl:perl:5.12.0:rc0:*:*:*:*:*:*
cpe:2.3:a:perl:perl:5.12.0:rc1:*:*:*:*:*:*
cpe:2.3:a:perl:perl:5.12.0:rc2:*:*:*:*:*:*
cpe:2.3:a:perl:perl:5.12.0:rc3:*:*:*:*:*:*
cpe:2.3:a:perl:perl:5.12.0:rc4:*:*:*:*:*:*
cpe:2.3:a:perl:perl:5.12.0:rc5:*:*:*:*:*:*
cpe:2.3:a:perl:perl:5.12.1:*:*:*:*:*:*:*
cpe:2.3:a:perl:perl:5.12.1:rc1:*:*:*:*:*:*
cpe:2.3:a:perl:perl:5.12.1:rc2:*:*:*:*:*:*
cpe:2.3:a:perl:perl:5.12.2:*:*:*:*:*:*:*
cpe:2.3:a:perl:perl:5.12.2:rc1:*:*:*:*:*:*
cpe:2.3:a:perl:perl:5.12.3:*:*:*:*:*:*:*
cpe:2.3:a:perl:perl:5.12.3:rc1:*:*:*:*:*:*
cpe:2.3:a:perl:perl:5.12.3:rc2:*:*:*:*:*:*
cpe:2.3:a:perl:perl:5.12.3:rc3:*:*:*:*:*:*
cpe:2.3:a:perl:perl:5.12.4:*:*:*:*:*:*:*
cpe:2.3:a:perl:perl:5.13.0:*:*:*:*:*:*:*
cpe:2.3:a:perl:perl:5.13.1:*:*:*:*:*:*:*
cpe:2.3:a:perl:perl:5.13.2:*:*:*:*:*:*:*
cpe:2.3:a:perl:perl:5.13.3:*:*:*:*:*:*:*
cpe:2.3:a:perl:perl:5.13.4:*:*:*:*:*:*:*
cpe:2.3:a:perl:perl:5.13.5:*:*:*:*:*:*:*
cpe:2.3:a:perl:perl:5.13.6:*:*:*:*:*:*:*
cpe:2.3:a:perl:perl:5.13.7:*:*:*:*:*:*:*
cpe:2.3:a:perl:perl:5.13.8:*:*:*:*:*:*:*
cpe:2.3:a:perl:perl:5.13.9:*:*:*:*:*:*:*
cpe:2.3:a:perl:perl:5.13.10:*:*:*:*:*:*:*
cpe:2.3:a:perl:perl:5.13.11:*:*:*:*:*:*:*
cpe:2.3:a:perl:perl:5.14.0:*:*:*:*:*:*:*
cpe:2.3:a:perl:perl:5.14.0:rc1:*:*:*:*:*:*
cpe:2.3:a:perl:perl:5.14.0:rc2:*:*:*:*:*:*
cpe:2.3:a:perl:perl:5.14.0:rc3:*:*:*:*:*:*
cpe:2.3:a:perl:perl:5.14.1:*:*:*:*:*:*:*
cpe:2.3:a:perl:perl:5.14.2:*:*:*:*:*:*:*
cpe:2.3:a:perl:perl:5.14.3:*:*:*:*:*:*:*
cpe:2.3:a:perl:perl:5.16.0:*:*:*:*:*:*:*
cpe:2.3:a:perl:perl:5.16.1:*:*:*:*:*:*:*
cpe:2.3:a:perl:perl:5.16.2:*:*:*:*:*:*:*
History

21 Nov 2024, 01:50

Type Values Removed Values Added
References () http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=702296 - () http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=702296 -
References () http://kb.juniper.net/InfoCenter/index?page=content&id=JSA10705 - () http://kb.juniper.net/InfoCenter/index?page=content&id=JSA10705 -
References () http://kb.juniper.net/InfoCenter/index?page=content&id=JSA10735 - () http://kb.juniper.net/InfoCenter/index?page=content&id=JSA10735 -
References () http://lists.apple.com/archives/security-announce/2013/Oct/msg00004.html - () http://lists.apple.com/archives/security-announce/2013/Oct/msg00004.html -
References () http://marc.info/?l=bugtraq&m=137891988921058&w=2 - () http://marc.info/?l=bugtraq&m=137891988921058&w=2 -
References () http://osvdb.org/90892 - () http://osvdb.org/90892 -
References () http://perl5.git.perl.org/perl.git/commitdiff/6e79fe5 - () http://perl5.git.perl.org/perl.git/commitdiff/6e79fe5 -
References () http://perl5.git.perl.org/perl.git/commitdiff/9d83adc - () http://perl5.git.perl.org/perl.git/commitdiff/9d83adc -
References () http://perl5.git.perl.org/perl.git/commitdiff/d59e31f - () http://perl5.git.perl.org/perl.git/commitdiff/d59e31f -
References () http://rhn.redhat.com/errata/RHSA-2013-0685.html - () http://rhn.redhat.com/errata/RHSA-2013-0685.html -
References () http://secunia.com/advisories/52472 - Vendor Advisory () http://secunia.com/advisories/52472 - Vendor Advisory
References () http://secunia.com/advisories/52499 - Vendor Advisory () http://secunia.com/advisories/52499 - Vendor Advisory
References () http://www.debian.org/security/2013/dsa-2641 - () http://www.debian.org/security/2013/dsa-2641 -
References () http://www.mandriva.com/security/advisories?name=MDVSA-2013:113 - () http://www.mandriva.com/security/advisories?name=MDVSA-2013:113 -
References () http://www.nntp.perl.org/group/perl.perl5.porters/2013/03/msg199755.html - () http://www.nntp.perl.org/group/perl.perl5.porters/2013/03/msg199755.html -
References () http://www.oracle.com/technetwork/topics/security/ovmbulletinjul2016-3090546.html - () http://www.oracle.com/technetwork/topics/security/ovmbulletinjul2016-3090546.html -
References () http://www.securityfocus.com/bid/58311 - () http://www.securityfocus.com/bid/58311 -
References () http://www.ubuntu.com/usn/USN-1770-1 - () http://www.ubuntu.com/usn/USN-1770-1 -
References () https://bugzilla.redhat.com/show_bug.cgi?id=912276 - () https://bugzilla.redhat.com/show_bug.cgi?id=912276 -
References () https://exchange.xforce.ibmcloud.com/vulnerabilities/82598 - () https://exchange.xforce.ibmcloud.com/vulnerabilities/82598 -
References () https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A18771 - () https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A18771 -
References () https://wiki.mageia.org/en/Support/Advisories/MGASA-2013-0094 - () https://wiki.mageia.org/en/Support/Advisories/MGASA-2013-0094 -
Information

Published : 2013-03-14 03:13

Updated : 2024-11-21 01:50

NVD link : CVE-2013-1667

Mitre link : CVE-2013-1667

CVE.ORG link : CVE-2013-1667

JSON object : View

Products Affected

perl

  • perl
CWE
CWE-399

Resource Management Errors


NetmanageIT Website NetmanageIT OSINT Web NetmanageIT OpenCTI NetmanageIT PDF Tools NetmanageIT CTO Corner Blog NetmanageIT Email Header Analyzer NetmanageIT Password Pusher NetmanageIT Internet Health and Latency Dashboard NetmanageIT Dedicated Speed Test Site NetmanageIT Ubuntu Mirror 10Gbps Copyright OpenCVE 2024