Description
Integer overflow in the format string functionality (Perl_sv_vcatpvfn) in Perl 5.9.2 and 5.8.6 Perl allows attackers to overwrite arbitrary memory and possibly execute arbitrary code via format string specifiers with large values, which causes an integer wrap and leads to a buffer overflow, as demonstrated using format string vulnerabilities in Perl applications.
Remediation
References
Related Vulnerabilities
WordPress Plugin Affiliates Manager Unspecified Vulnerability (2.7.7)
WordPress Plugin Smooth Scroll Page Up/Down Buttons Cross-Site Scripting (1.3)
PHP Improper Input Validation Vulnerability (CVE-2013-3735)
OpenSSL Improper Input Validation Vulnerability (CVE-2010-0433)
WordPress Improper Control of Generation of Code ('Code Injection') Vulnerability (CVE-2019-8942)