Description

Stack-based buffer overflow in the CPerlHost::Add method in win32/perlhost.h in Perl before 5.24.3-RC1 and 5.26.x before 5.26.1-RC1 on Windows allows attackers to execute arbitrary code via a long environment variable.

Remediation

References

CVE-2017-12814

Related Vulnerabilities

WordPress Plugin WordPress Payments-GetPaid Cross-Site Scripting (2.3.3)

WordPress Plugin Uploadify Integration Multiple Cross-Site Scripting Vulnerabilities (0.9.6)

Django DEPRECATED: Code Vulnerability (CVE-2015-0222)

WordPress Plugin YOP Poll Cross-Site Scripting (5.7.3)

qdPM Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2022-26180)

Severity

Critical

Classification

CVE-2017-12814 CWE-119 CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Tags

Missing Update Known Vulnerabilities