CVE-2007-5116 - Secunia Advisories - Vulnerability Intelligence

CVE Reference: CVE-2007-5116
NOTE: The text on this page is written by CVE MITRE and reflects neither the opinions of Secunia or the results of our research. All data on this page is written and maintained by CVE MITRE.

Original Page at CVE MITRE: CVE-2007-5116

Description: Buffer overflow in the polymorphic opcode support in the Regular Expression Engine (regcomp.c) in Perl 5.8 allows context-dependent attackers to execute arbitrary code by switching from byte to Unicode (UTF) characters in a regular expression.

CVE Status: Candidate

References: XF http://xforce.iss.net/xforce/xfdb/38270 UBUNTU http://www.ubuntu.com/usn/usn-552-1 SUSE http://www.novell.com/linux/security/advisories/2007_24_sr.html SUNALERT http://sunsolve.sun.com/search/document.do?assetkey=1-26-31524-1 http://sunsolve.sun.com/search/document.do?assetkey=1-66-231524-1 ST 1018899 SAID Secunia Advisory: SA27756 Secunia Advisory: SA28387 Secunia Advisory: SA28368 Secunia Advisory: SA28167 Secunia Advisory: SA27936 Secunia Advisory: SA27570 Secunia Advisory: SA27613 Secunia Advisory: SA27548 Secunia Advisory: SA27479 Secunia Advisory: SA27515 Secunia Advisory: SA27531 Secunia Advisory: SA27546 Secunia Advisory: SA28993 Secunia Advisory: SA29074 Secunia Advisory: SA31208 REDHAT http://www.redhat.com/support/errata/RHSA-2007-1011.html http://www.redhat.com/support/errata/RHSA-2007-0966.html OPENPKG http://www.openpkg.com/security/advisories/OpenPKG-SA-2007.023.html MLIST http://lists.vmware.com/pipermail/security-announce/2008/000002.html MISC MANDRIVA http://www.mandriva.com/security/advisories?name=MDKSA-2007:207 HP http://marc.info/?l=bugtraq&m=120352263023774&w=2 GENTOO http://www.gentoo.org/security/en/glsa/glsa-200711-28.xml DEBIAN http://www.debian.org/security/2007/dsa-1400 CONFIRM http://www.ipcop.org/index.php?name=News&file=article&sid=41 http://www.vmware.com/security/advisories/VMSA-2008-0001.html http://support.avaya.com/elmodocs2/security/ASA-2008-014.htm http://docs.info.apple.com/article.html?artnum=307179 CERT http://www.us-cert.gov/cas/techalerts/TA07-352A.html BUGTRAQ http://www.securityfocus.com/archive/1/archive/1/486859/100/0/threaded http://www.securityfocus.com/archive/1/archive/1/485936/100/0/threaded http://www.securityfocus.com/archive/1/archive/1/483584/100/0/threaded http://www.securityfocus.com/archive/1/archive/1/483563/100/0/threaded BID 26350 APPLE http://lists.apple.com/archives/security-announce/2007/Dec/msg00002.html AIXAPAR http://www-1.ibm.com/support/docview.wss?uid=isg1IZ10220 http://www-1.ibm.com/support/docview.wss?uid=isg1IZ10244

Return to the previous page.