Oval Definition:	oval:org.mitre.oval:def:1074
Revision Date: 2006-05-03 Version: 17 Title: Perl Format String Integer Overflow Vulnerability Description: Integer overflow in the format string functionality (Perl_sv_vcatpvfn) in Perl 5.9.2 and 5.8.6 Perl allows attackers to overwrite arbitrary memory and possibly execute arbitrary code via format string specifiers with large values, which causes an integer wrap and leads to a buffer overflow, as demonstrated using format string vulnerabilities in Perl applications. Family: unix Class: vulnerability Status: ACCEPTED Reference(s): CVE-2005-3962 Platform(s): Sun Solaris 10 Product(s): Perl Definition Synopsis Solaris 10 (SPARC) meets Sun Alert ID 102192 criteria. Solaris 10 Installed AND Installed architecture is sparc AND NOT Patch 119985-02 or later installed (SPARC-10) OR Solaris 10 (x86) meets Sun Alert ID 102192 criteria. Solaris 10 Installed AND ix86 architecture AND NOT Patch 122082-01 or later installed (x86-10)
BACK