Description: Jack Louis has discovered a vulnerability in Perl, which can be exploited by malicious people to cause a Denial of Service and potentially to compromise a vulnerable Perl application.
The vulnerability is caused due to an integer overflow error in the "Perl_sv_vcatpvfn()" function of "sv.c" when handing a format string that contains an explicit format parameter index that exceeds INT_MAX. This can exploited to cause illegal memory access which causes an affected Perl application to crash.
Example:
perl -e 'printf("%2147483649\$n");'
The vulnerability has been confirmed in version 5.8.7 and also reported in versions 5.8.6 and 5.9.2. Other versions may also be affected.
Note: This vulnerability must be exploited in conjunction with a format string vulnerability in a Perl application. According to the vendor, exploitation of this vulnerability could lead to execution of arbitrary code.
If you have new information regarding this Secunia advisory or a product in our database, please send it to us using either our web form or email us at vuln@secunia.com.
Ideas, suggestions, and other feedback are most welcome.
