CVE-2004-2286

HIGH

7.5

CVSS Severity Score

EPSS Score0.0400%

EPSS Percentile5.60th

PublishedDec 31, 2004

Last ModifiedApr 16, 2026

Vulnerability Description

Integer overflow in the duplication operator in ActivePerl allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a large multiplier, which may trigger a buffer overflow.

Affected Platforms (CPE)

📦

Activestate

Activeperl

= 5.6.1

📦

Activestate

Activeperl

= 5.6.1.630

📦

Activestate

Activeperl

= 5.6.2

📦

Activestate

Activeperl

= 5.6.3

📦

Activestate

Activeperl

= 5.7.1

📦

Activestate

Activeperl

= 5.7.2

📦

Activestate

Activeperl

= 5.7.3

📦

Activestate

Activeperl

= 5.8

📦

Activestate

Activeperl

= 5.8.1

📦

Activestate

Activeperl

= 5.8.3

📦

Larry Wall

Perl

= 5.3

📦

Larry Wall

Perl

= 5.4

📦

Larry Wall

Perl

= 5.4.5

📦

Larry Wall

Perl

= 5.5

📦

Larry Wall

Perl

= 5.5.3

📦

Larry Wall

Perl

= 5.6

📦

Larry Wall

Perl

= 5.6.1

📦

Larry Wall

Perl

= 5.8.0

📦

Larry Wall

Perl

= 5.8.1

📦

Larry Wall

Perl

= 5.8.3

References & Advisories

🔗 http://archives.neohapsis.com/archives/fulldisclosure/2004-05/0878.html

🔗 http://www.securityfocus.com/bid/10380

🔗 https://exchange.xforce.ibmcloud.com/vulnerabilities/16224

🔗 http://archives.neohapsis.com/archives/fulldisclosure/2004-05/0878.html

🔗 http://www.securityfocus.com/bid/10380

🔗 https://exchange.xforce.ibmcloud.com/vulnerabilities/16224

Vulnerability Description

Affected Platforms (CPE)

Activeperl

Activeperl

Activeperl

Activeperl

Activeperl

Activeperl

Activeperl

Activeperl

Activeperl

Activeperl

Perl

Perl

Perl

Perl

Perl

Perl

Perl

Perl

Perl

Perl

References & Advisories

Related Vulnerabilities