Test ID:	1.3.6.1.4.1.25623.1.0.801790
Category:	Denial of Service
Title:	Perl Denial of Service Vulnerability - Windows
Summary:	Perl is prone to a denial of service (DoS) vulnerability.
Description:	Summary: Perl is prone to a denial of service (DoS) vulnerability. Vulnerability Insight: The flaw is due to an error in 'getpeername', 'readdir', 'closedir', 'getsockname', 'rewinddir', 'tell', or 'telldir' function calls. When given a wrong number of arguments, those functions will attempt to perform a comparison between an unallocated memory zone and a given register, resulting in a segmentation fault. Vulnerability Impact: Successful exploitation will allow attackers to cause an affected application to crash, denying service to legitimate users. Affected Software/OS: Perl versions 5.10 and 5.10.1 on Windows. Solution: Upgrade to Perl version 5.12 or later. CVSS Score: 5.0 CVSS Vector: AV:N/AC:L/Au:N/C:N/I:N/A:P
Cross-Ref:	Common Vulnerability Exposure (CVE) ID: CVE-2011-0761 BugTraq ID: 47766 http://www.securityfocus.com/bid/47766 Bugtraq: 20110509 TSSA-2011-03 - Perl : multiple functions null pointer dereference uppon parameters injection (Google Search) http://www.securityfocus.com/archive/1/517916/100/0/threaded http://www.toucan-system.com/advisories/tssa-2011-03.txt http://securitytracker.com/id?1025507 http://securityreason.com/securityalert/8248 XForce ISS Database: perl-functions-dos(67355) https://exchange.xforce.ibmcloud.com/vulnerabilities/67355
Copyright	Copyright (C) 2011 Greenbone AG

This is only one of 145615 vulnerability tests in our test suite. Find out more about running a complete security audit. To run a free test of this vulnerability against your system, register below.