CVE-2009-1391
Compress::Raw::Zlib Perl Module - Remote Code Execution
Severity Score
6.8
*CVSS v2
Exploit Likelihood
*EPSS
Affected Versions
*CPE
Public Exploits
4
*Multiple Sources
Exploited in Wild
-
*KEV
Decision
-
*SSVC
Descriptions
Off-by-one error in the inflate function in Zlib.xs in Compress::Raw::Zlib Perl module before 2.017, as used in AMaViS, SpamAssassin, and possibly other products, allows context-dependent attackers to cause a denial of service (hang or crash) via a crafted zlib compressed stream that triggers a heap-based buffer overflow, as exploited in the wild by Trojan.Downloader-71014 in June 2009.
Error de superación de límite (Off-by-one) en la función "inflate" en Zlib.xs en el modulo de Perl Compress::Raw::Zlib anteriores a v2.017, cuando es utilizado en AMaVis, SpamAssassin, y posiblemente otros productos, permite a atacantes dependientes del contexto, producir una denegación de servicio (cuelgue o caída) a través de un stream comprimido zlib manipulado que inicia un desbordamiento de búfer basado en memoria libre, como se explot activamente por Trojan.Downloader-71014 en Junio de 2009.
*Credits:
N/A
CVSS Scores
Attack Vector
Attack Complexity
Authentication
Confidentiality
Integrity
Availability
* Common Vulnerability Scoring System
SSVC
- Decision:-
Exploitation
Automatable
Tech. Impact
* Organization's Worst-case Scenario
Timeline
- 2009-04-23 CVE Reserved
- 2009-05-11 First Exploit
- 2009-06-16 CVE Published
- 2023-03-07 EPSS Updated
- 2024-08-07 CVE Updated
- ---------- Exploited in Wild
- ---------- KEV Due Date
CWE
- CWE-189: Numeric Errors
CAPEC
References (19)
| URL | Tag | Source |
|---|---|---|
| http://article.gmane.org/gmane.mail.virus.amavis.user/33635 | X_refsource_misc | |
| http://osvdb.org/55041 | Vdb Entry | |
| http://secunia.com/advisories/35685 | Third Party Advisory | |
| http://secunia.com/advisories/35689 | Third Party Advisory | |
| http://secunia.com/advisories/35876 | Third Party Advisory | |
| http://thread.gmane.org/gmane.mail.virus.amavis.user/33635 | X_refsource_misc | |
| https://bugs.gentoo.org/show_bug.cgi?id=273141 | X_refsource_confirm | |
| https://exchange.xforce.ibmcloud.com/vulnerabilities/51062 | Vdb Entry |
| URL | Date | SRC |
|---|---|---|
| https://www.exploit-db.com/exploits/33032 | 2009-05-11 | |
| http://article.gmane.org/gmane.mail.virus.amavis.user/33638 | 2024-08-07 | |
| http://www.securityfocus.com/bid/35307 | 2024-08-07 | |
| https://bugzilla.redhat.com/show_bug.cgi?id=504386 | 2024-08-07 |
| URL | Date | SRC |
|---|---|---|
| http://www.vupen.com/english/advisories/2009/1571 | 2018-10-03 |
| URL | Date | SRC |
|---|---|---|
| http://lists.opensuse.org/opensuse-security-announce/2009-07/msg00002.html | 2018-10-03 | |
| http://secunia.com/advisories/35422 | 2018-10-03 | |
| http://security.gentoo.org/glsa/glsa-200908-07.xml | 2018-10-03 | |
| http://www.mandriva.com/security/advisories?name=MDVSA-2009:157 | 2018-10-03 | |
| https://usn.ubuntu.com/794-1 | 2018-10-03 | |
| https://www.redhat.com/archives/fedora-package-announce/2009-July/msg00607.html | 2018-10-03 |
Affected Vendors, Products, and Versions
| Vendor | Product | Version | Other | Status | ||||||
|---|---|---|---|---|---|---|---|---|---|---|
| Vendor | Product | Version | Other | Status | <-- --> | Vendor | Product | Version | Other | Status |
| Paul Marquess Search vendor "Paul Marquess" | Compress-raw-zlib Perl Module Search vendor "Paul Marquess" for product "Compress-raw-zlib Perl Module" | <= 2.015 Search vendor "Paul Marquess" for product "Compress-raw-zlib Perl Module" and version " <= 2.015" | - |
Affected
| ||||||
| Paul Marquess Search vendor "Paul Marquess" | Compress-raw-zlib Perl Module Search vendor "Paul Marquess" for product "Compress-raw-zlib Perl Module" | 2.001 Search vendor "Paul Marquess" for product "Compress-raw-zlib Perl Module" and version "2.001" | - |
Affected
| ||||||
| Paul Marquess Search vendor "Paul Marquess" | Compress-raw-zlib Perl Module Search vendor "Paul Marquess" for product "Compress-raw-zlib Perl Module" | 2.002 Search vendor "Paul Marquess" for product "Compress-raw-zlib Perl Module" and version "2.002" | - |
Affected
| ||||||
| Paul Marquess Search vendor "Paul Marquess" | Compress-raw-zlib Perl Module Search vendor "Paul Marquess" for product "Compress-raw-zlib Perl Module" | 2.003 Search vendor "Paul Marquess" for product "Compress-raw-zlib Perl Module" and version "2.003" | - |
Affected
| ||||||
| Paul Marquess Search vendor "Paul Marquess" | Compress-raw-zlib Perl Module Search vendor "Paul Marquess" for product "Compress-raw-zlib Perl Module" | 2.004 Search vendor "Paul Marquess" for product "Compress-raw-zlib Perl Module" and version "2.004" | - |
Affected
| ||||||
| Paul Marquess Search vendor "Paul Marquess" | Compress-raw-zlib Perl Module Search vendor "Paul Marquess" for product "Compress-raw-zlib Perl Module" | 2.005 Search vendor "Paul Marquess" for product "Compress-raw-zlib Perl Module" and version "2.005" | - |
Affected
| ||||||
| Paul Marquess Search vendor "Paul Marquess" | Compress-raw-zlib Perl Module Search vendor "Paul Marquess" for product "Compress-raw-zlib Perl Module" | 2.006 Search vendor "Paul Marquess" for product "Compress-raw-zlib Perl Module" and version "2.006" | - |
Affected
| ||||||
| Paul Marquess Search vendor "Paul Marquess" | Compress-raw-zlib Perl Module Search vendor "Paul Marquess" for product "Compress-raw-zlib Perl Module" | 2.008 Search vendor "Paul Marquess" for product "Compress-raw-zlib Perl Module" and version "2.008" | - |
Affected
| ||||||
| Paul Marquess Search vendor "Paul Marquess" | Compress-raw-zlib Perl Module Search vendor "Paul Marquess" for product "Compress-raw-zlib Perl Module" | 2.009 Search vendor "Paul Marquess" for product "Compress-raw-zlib Perl Module" and version "2.009" | - |
Affected
| ||||||
| Paul Marquess Search vendor "Paul Marquess" | Compress-raw-zlib Perl Module Search vendor "Paul Marquess" for product "Compress-raw-zlib Perl Module" | 2.010 Search vendor "Paul Marquess" for product "Compress-raw-zlib Perl Module" and version "2.010" | - |
Affected
| ||||||
| Paul Marquess Search vendor "Paul Marquess" | Compress-raw-zlib Perl Module Search vendor "Paul Marquess" for product "Compress-raw-zlib Perl Module" | 2.011 Search vendor "Paul Marquess" for product "Compress-raw-zlib Perl Module" and version "2.011" | - |
Affected
| ||||||
| Paul Marquess Search vendor "Paul Marquess" | Compress-raw-zlib Perl Module Search vendor "Paul Marquess" for product "Compress-raw-zlib Perl Module" | 2.012 Search vendor "Paul Marquess" for product "Compress-raw-zlib Perl Module" and version "2.012" | - |
Affected
| ||||||
| Paul Marquess Search vendor "Paul Marquess" | Compress-raw-zlib Perl Module Search vendor "Paul Marquess" for product "Compress-raw-zlib Perl Module" | 2.014 Search vendor "Paul Marquess" for product "Compress-raw-zlib Perl Module" and version "2.014" | - |
Affected
| ||||||