Executive Summary

Informations
NameCVE-2018-6913First vendor Publication2018-04-17
VendorCveLast vendor Modification2019-03-05

Security-Database Scoring CVSS v2

Cvss vector : (AV:N/AC:L/Au:N/C:P/I:P/A:P)
Cvss Base Score7.5Attack RangeNetwork
Cvss Impact Score6.4Attack ComplexityLow
Cvss Expoit Score10AuthenticationNone Required
Calculate full CVSS 2.0 Vectors scores

Detail

Heap-based buffer overflow in the pack function in Perl before 5.26.2 allows context-dependent attackers to execute arbitrary code via a large item count.

Original Source

Url : http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-6913

CWE : Common Weakness Enumeration

%idName
100 %CWE-119Failure to Constrain Operations within the Bounds of a Memory Buffer

CPE : Common Platform Enumeration

TypeDescriptionCount
Application191
Os4
Os3

Nessus® Vulnerability Scanner

DateDescription
2019-01-03Name : The remote Fedora host is missing a security update.
File : fedora_2018-d1ba58394e.nasl - Type : ACT_GATHER_INFO
2018-08-17Name : The remote PhotonOS host is missing multiple security updates.
File : PhotonOS_PHSA-2018-1_0-0167.nasl - Type : ACT_GATHER_INFO
2018-07-24Name : The remote PhotonOS host is missing multiple security updates.
File : PhotonOS_PHSA-2018-2_0-0050.nasl - Type : ACT_GATHER_INFO
2018-07-17Name : The remote host is missing a macOS update that fixes multiple security vulner...
File : macos_10_13_6.nasl - Type : ACT_GATHER_INFO
2018-07-17Name : The remote host is missing a macOS or Mac OS X security update that fixes mul...
File : macosx_SecUpd2018-004.nasl - Type : ACT_GATHER_INFO
2018-04-26Name : The remote Fedora host is missing one or more security updates.
File : fedora_2018-0050f7c0d1.nasl - Type : ACT_GATHER_INFO
2018-04-23Name : The remote Fedora host is missing one or more security updates.
File : fedora_2018-1c8b49fbc7.nasl - Type : ACT_GATHER_INFO
2018-04-16Name : The remote Debian host is missing a security update.
File : debian_DLA-1345.nasl - Type : ACT_GATHER_INFO
2018-04-16Name : The remote Debian host is missing a security-related update.
File : debian_DSA-4172.nasl - Type : ACT_GATHER_INFO
2018-04-16Name : The remote FreeBSD host is missing one or more security-related updates.
File : freebsd_pkg_41c96ffd29a64dcc9a8865f5038fa6eb.nasl - Type : ACT_GATHER_INFO

Sources (Detail)

SourceUrl
BID http://www.securityfocus.com/bid/103953
CONFIRM https://rt.perl.org/Public/Bug/Display.html?id=131844
DEBIAN https://www.debian.org/security/2018/dsa-4172
MLIST https://lists.debian.org/debian-lts-announce/2018/04/msg00009.html
SECTRACK http://www.securitytracker.com/id/1040681
UBUNTU https://usn.ubuntu.com/3625-1/
https://usn.ubuntu.com/3625-2/

Alert History

If you want to see full details history, please login or register.
0
1
2
3
4
5
DateInformations
2019-03-06 00:19:03
  • Multiple Updates
2019-01-17 17:19:03
  • Multiple Updates
2018-05-22 21:19:39
  • Multiple Updates
2018-05-02 09:19:28
  • Multiple Updates
2018-04-19 09:19:32
  • Multiple Updates
2018-04-18 00:19:38
  • First insertion