Denial of Service and Arbitrary Code Execution Vulnerability in Perl 5.22

Denial of Service and Arbitrary Code Execution Vulnerability in Perl 5.22

CVE-2015-8608 · HIGH Severity

AV:N/AC:L/AU:N/C:P/I:P/A:P

The VDir::MapPathA and VDir::MapPathW functions in Perl 5.22 allow remote attackers to cause a denial of service (out-of-bounds read) and possibly execute arbitrary code via a crafted (1) drive letter or (2) pInName argument.

Learn more about our Web Application Penetration Testing UK.