// For flags

CVE-2009-1391

Compress::Raw::Zlib Perl Module - Remote Code Execution

Severity Score

6.8
*CVSS v2

Exploit Likelihood

*EPSS

Affected Versions

*CPE

Public Exploits

4
*Multiple Sources

Exploited in Wild

-
*KEV

Decision

-
*SSVC
Descriptions

Off-by-one error in the inflate function in Zlib.xs in Compress::Raw::Zlib Perl module before 2.017, as used in AMaViS, SpamAssassin, and possibly other products, allows context-dependent attackers to cause a denial of service (hang or crash) via a crafted zlib compressed stream that triggers a heap-based buffer overflow, as exploited in the wild by Trojan.Downloader-71014 in June 2009.

Error de superación de límite (Off-by-one) en la función "inflate" en Zlib.xs en el modulo de Perl Compress::Raw::Zlib anteriores a v2.017, cuando es utilizado en AMaVis, SpamAssassin, y posiblemente otros productos, permite a atacantes dependientes del contexto, producir una denegación de servicio (cuelgue o caída) a través de un stream comprimido zlib manipulado que inicia un desbordamiento de búfer basado en memoria libre, como se explot activamente por Trojan.Downloader-71014 en Junio de 2009.

*Credits: N/A
CVSS Scores
Attack Vector
Network
Attack Complexity
Medium
Authentication
None
Confidentiality
Partial
Integrity
Partial
Availability
Partial
* Common Vulnerability Scoring System
SSVC
  • Decision:-
Exploitation
-
Automatable
-
Tech. Impact
-
* Organization's Worst-case Scenario
Timeline
  • 2009-04-23 CVE Reserved
  • 2009-05-11 First Exploit
  • 2009-06-16 CVE Published
  • 2023-03-07 EPSS Updated
  • 2024-08-07 CVE Updated
  • ---------- Exploited in Wild
  • ---------- KEV Due Date
CWE
  • CWE-189: Numeric Errors
CAPEC
Affected Vendors, Products, and Versions
Vendor Product Version Other Status
Vendor Product Version Other Status <-- --> Vendor Product Version Other Status
Paul Marquess
Search vendor "Paul Marquess"
Compress-raw-zlib Perl Module
Search vendor "Paul Marquess" for product "Compress-raw-zlib Perl Module"
<= 2.015
Search vendor "Paul Marquess" for product "Compress-raw-zlib Perl Module" and version " <= 2.015"
-
Affected
Paul Marquess
Search vendor "Paul Marquess"
Compress-raw-zlib Perl Module
Search vendor "Paul Marquess" for product "Compress-raw-zlib Perl Module"
2.001
Search vendor "Paul Marquess" for product "Compress-raw-zlib Perl Module" and version "2.001"
-
Affected
Paul Marquess
Search vendor "Paul Marquess"
Compress-raw-zlib Perl Module
Search vendor "Paul Marquess" for product "Compress-raw-zlib Perl Module"
2.002
Search vendor "Paul Marquess" for product "Compress-raw-zlib Perl Module" and version "2.002"
-
Affected
Paul Marquess
Search vendor "Paul Marquess"
Compress-raw-zlib Perl Module
Search vendor "Paul Marquess" for product "Compress-raw-zlib Perl Module"
2.003
Search vendor "Paul Marquess" for product "Compress-raw-zlib Perl Module" and version "2.003"
-
Affected
Paul Marquess
Search vendor "Paul Marquess"
Compress-raw-zlib Perl Module
Search vendor "Paul Marquess" for product "Compress-raw-zlib Perl Module"
2.004
Search vendor "Paul Marquess" for product "Compress-raw-zlib Perl Module" and version "2.004"
-
Affected
Paul Marquess
Search vendor "Paul Marquess"
Compress-raw-zlib Perl Module
Search vendor "Paul Marquess" for product "Compress-raw-zlib Perl Module"
2.005
Search vendor "Paul Marquess" for product "Compress-raw-zlib Perl Module" and version "2.005"
-
Affected
Paul Marquess
Search vendor "Paul Marquess"
Compress-raw-zlib Perl Module
Search vendor "Paul Marquess" for product "Compress-raw-zlib Perl Module"
2.006
Search vendor "Paul Marquess" for product "Compress-raw-zlib Perl Module" and version "2.006"
-
Affected
Paul Marquess
Search vendor "Paul Marquess"
Compress-raw-zlib Perl Module
Search vendor "Paul Marquess" for product "Compress-raw-zlib Perl Module"
2.008
Search vendor "Paul Marquess" for product "Compress-raw-zlib Perl Module" and version "2.008"
-
Affected
Paul Marquess
Search vendor "Paul Marquess"
Compress-raw-zlib Perl Module
Search vendor "Paul Marquess" for product "Compress-raw-zlib Perl Module"
2.009
Search vendor "Paul Marquess" for product "Compress-raw-zlib Perl Module" and version "2.009"
-
Affected
Paul Marquess
Search vendor "Paul Marquess"
Compress-raw-zlib Perl Module
Search vendor "Paul Marquess" for product "Compress-raw-zlib Perl Module"
2.010
Search vendor "Paul Marquess" for product "Compress-raw-zlib Perl Module" and version "2.010"
-
Affected
Paul Marquess
Search vendor "Paul Marquess"
Compress-raw-zlib Perl Module
Search vendor "Paul Marquess" for product "Compress-raw-zlib Perl Module"
2.011
Search vendor "Paul Marquess" for product "Compress-raw-zlib Perl Module" and version "2.011"
-
Affected
Paul Marquess
Search vendor "Paul Marquess"
Compress-raw-zlib Perl Module
Search vendor "Paul Marquess" for product "Compress-raw-zlib Perl Module"
2.012
Search vendor "Paul Marquess" for product "Compress-raw-zlib Perl Module" and version "2.012"
-
Affected
Paul Marquess
Search vendor "Paul Marquess"
Compress-raw-zlib Perl Module
Search vendor "Paul Marquess" for product "Compress-raw-zlib Perl Module"
2.014
Search vendor "Paul Marquess" for product "Compress-raw-zlib Perl Module" and version "2.014"
-
Affected