CyberSec.Space Logo
Back to CVE Browser

CVE-2001-0815

HIGH
7.5
CVSS Severity Score
EPSS Score0.1330%
EPSS Percentile6.34th
PublishedDec 6, 2001
Last ModifiedApr 16, 2026

Vulnerability Description

Buffer overflow in PerlIS.dll in Activestate ActivePerl 5.6.1.629 and earlier allows remote attackers to execute arbitrary code via an HTTP request for a long filename that ends in a .pl extension.

Affected Platforms (CPE)

πŸ“¦
Activestate

Activeperl

<= 5.6.1.629

References & Advisories

πŸ”— http://bugs.activestate.com/show_bug.cgi?id=18062
πŸ”— http://marc.info/?l=bugtraq&m=100583978302585&w=2
πŸ”— http://www.osvdb.org/678
πŸ”— http://www.securityfocus.com/bid/3526
πŸ”— https://exchange.xforce.ibmcloud.com/vulnerabilities/7539
πŸ”— http://bugs.activestate.com/show_bug.cgi?id=18062
πŸ”— http://marc.info/?l=bugtraq&m=100583978302585&w=2
πŸ”— http://www.osvdb.org/678

Related Vulnerabilities

CVE-2004-037710.0

Buffer overflow in the win32_stat function for (1) ActiveState's ActivePerl and (2) Larry Wall's Perl before 5.8.3 allows local or...

CVE-2004-22867.5

Integer overflow in the duplication operator in ActivePerl allows remote attackers to cause a denial of service (crash) and possib...

CVE-2012-53776.0

Untrusted search path vulnerability in the installation functionality in ActivePerl 5.16.1.1601, when installed in the top-level C...

CVE-2006-28564.6

ActiveState ActivePerl 5.8.8.817 for Windows configures the site/lib directory with "Users" group permissions for changing files, ...