mirror of
https://github.com/0xMarcio/cve.git
synced 2025-05-06 02:31:38 +00:00
790 B
790 B
CVE-2017-12814
Description
Stack-based buffer overflow in the CPerlHost::Add method in win32/perlhost.h in Perl before 5.24.3-RC1 and 5.26.x before 5.26.1-RC1 on Windows allows attackers to execute arbitrary code via a long environment variable.
POC
Reference
- https://hackerone.com/reports/272497
- https://rt.perl.org/Public/Bug/Display.html?id=131665
- https://www.oracle.com/security-alerts/cpujul2020.html
Github
No PoCs found on GitHub currently.