Vulnerability CVE-2013-1667: Information

Description

The rehash mechanism in Perl 5.8.2 through 5.16.x allows context-dependent attackers to cause a denial of service (memory consumption and crash) via a crafted hash key.

Severity: HIGH (7.5)

References to Advisories, Solutions, and Tools

1. Affected configurations:

   1. Configuration 1

      cpe:2.3:a:perl:perl:5.14.1:*:*:*:*:*:*:*

      ---

      cpe:2.3:a:perl:perl:5.8.4:*:*:*:*:*:*:*

      ---

      cpe:2.3:a:perl:perl:5.12.0:rc1:*:*:*:*:*:*

      ---

      cpe:2.3:a:perl:perl:5.13.10:*:*:*:*:*:*:*

      ---

      cpe:2.3:a:perl:perl:5.12.0:rc4:*:*:*:*:*:*

      ---

      cpe:2.3:a:perl:perl:5.12.4:*:*:*:*:*:*:*

      ---

      cpe:2.3:a:perl:perl:5.8.9:*:*:*:*:*:*:*

      ---

      cpe:2.3:a:perl:perl:5.12.0:rc3:*:*:*:*:*:*

      ---

      cpe:2.3:a:perl:perl:5.12.1:rc1:*:*:*:*:*:*

      ---

      cpe:2.3:a:perl:perl:5.13.8:*:*:*:*:*:*:*

      ---

      cpe:2.3:a:perl:perl:5.11.2:*:*:*:*:*:*:*

      ---

      cpe:2.3:a:perl:perl:5.13.0:*:*:*:*:*:*:*

      ---

      cpe:2.3:a:perl:perl:5.14.0:rc2:*:*:*:*:*:*

      ---

      cpe:2.3:a:perl:perl:5.12.3:rc3:*:*:*:*:*:*

      ---

      cpe:2.3:a:perl:perl:5.13.5:*:*:*:*:*:*:*

      ---

      cpe:2.3:a:perl:perl:5.13.3:*:*:*:*:*:*:*

      ---

      cpe:2.3:a:perl:perl:5.13.6:*:*:*:*:*:*:*

      ---

      cpe:2.3:a:perl:perl:5.14.3:*:*:*:*:*:*:*

      ---

      cpe:2.3:a:perl:perl:5.10.0:rc2:*:*:*:*:*:*

      ---

      cpe:2.3:a:perl:perl:5.13.11:*:*:*:*:*:*:*

      ---

      cpe:2.3:a:perl:perl:5.8.2:*:*:*:*:*:*:*

      ---

      cpe:2.3:a:perl:perl:5.8.10:*:*:*:*:*:*:*

      ---

      cpe:2.3:a:perl:perl:5.11.1:*:*:*:*:*:*:*

      ---

      cpe:2.3:a:perl:perl:5.8.5:*:*:*:*:*:*:*

      ---

      cpe:2.3:a:perl:perl:5.13.7:*:*:*:*:*:*:*

      ---

      cpe:2.3:a:perl:perl:5.10:*:*:*:*:*:*:*

      ---

      cpe:2.3:a:perl:perl:5.13.1:*:*:*:*:*:*:*

      ---

      cpe:2.3:a:perl:perl:5.10.1:*:*:*:*:*:*:*

      ---

      cpe:2.3:a:perl:perl:5.12.3:*:*:*:*:*:*:*

      ---

      cpe:2.3:a:perl:perl:5.12.1:rc2:*:*:*:*:*:*

      ---

      cpe:2.3:a:perl:perl:5.12.0:rc2:*:*:*:*:*:*

      ---

      cpe:2.3:a:perl:perl:5.14.0:*:*:*:*:*:*:*

      ---

      cpe:2.3:a:perl:perl:5.16.0:*:*:*:*:*:*:*

      ---

      cpe:2.3:a:perl:perl:5.12.0:*:*:*:*:*:*:*

      ---

      cpe:2.3:a:perl:perl:5.16.1:*:*:*:*:*:*:*

      ---

      cpe:2.3:a:perl:perl:5.12.3:rc1:*:*:*:*:*:*

      ---

      cpe:2.3:a:perl:perl:5.11.5:*:*:*:*:*:*:*

      ---

      cpe:2.3:a:perl:perl:5.11.0:*:*:*:*:*:*:*

      ---

      cpe:2.3:a:perl:perl:5.12.2:*:*:*:*:*:*:*

      ---

      cpe:2.3:a:perl:perl:5.8.7:*:*:*:*:*:*:*

      ---

      cpe:2.3:a:perl:perl:5.14.0:rc1:*:*:*:*:*:*

      ---

      cpe:2.3:a:perl:perl:5.11.3:*:*:*:*:*:*:*

      ---

      cpe:2.3:a:perl:perl:5.13.4:*:*:*:*:*:*:*

      ---

      cpe:2.3:a:perl:perl:5.14.0:rc3:*:*:*:*:*:*

      ---

      cpe:2.3:a:perl:perl:5.10.1:rc1:*:*:*:*:*:*

      ---

      cpe:2.3:a:perl:perl:5.11.4:*:*:*:*:*:*:*

      ---

      cpe:2.3:a:perl:perl:5.16.2:*:*:*:*:*:*:*

      ---

      cpe:2.3:a:perl:perl:5.14.2:*:*:*:*:*:*:*

      ---

      cpe:2.3:a:perl:perl:5.13.9:*:*:*:*:*:*:*

      ---

      cpe:2.3:a:perl:perl:5.12.3:rc2:*:*:*:*:*:*

      ---

      cpe:2.3:a:perl:perl:5.12.2:rc1:*:*:*:*:*:*

      ---

      cpe:2.3:a:perl:perl:5.12.0:rc0:*:*:*:*:*:*

      ---

      cpe:2.3:a:perl:perl:5.8.3:*:*:*:*:*:*:*

      ---

      cpe:2.3:a:perl:perl:5.12.0:rc5:*:*:*:*:*:*

      ---

      cpe:2.3:a:perl:perl:5.8.6:*:*:*:*:*:*:*

      ---

      cpe:2.3:a:perl:perl:5.10.0:*:*:*:*:*:*:*

      ---

      cpe:2.3:a:perl:perl:5.8.8:*:*:*:*:*:*:*

      ---

      cpe:2.3:a:perl:perl:5.13.2:*:*:*:*:*:*:*

      ---

      cpe:2.3:a:perl:perl:5.10.0:rc1:*:*:*:*:*:*

      ---

      cpe:2.3:a:perl:perl:5.12.1:*:*:*:*:*:*:*

      ---

      cpe:2.3:a:perl:perl:5.10.1:rc2:*:*:*:*:*:*

      ---