7.5 - CVE-2013-1667

Executive Summary

Informations
Name	CVE-2013-1667	First vendor Publication	2013-03-13
Vendor	Cve	Last vendor Modification	2017-09-19

Security-Database Scoring CVSS v3

Cvss vector : N/A
Overall CVSS Score	NA
Base Score	NA	Environmental Score	NA
impact SubScore	NA	Temporal Score	NA
Exploitabality Sub Score	NA

Calculate full CVSS 3.0 Vectors scores

Security-Database Scoring CVSS v2

Cvss vector : (AV:N/AC:L/Au:N/C:P/I:P/A:P)
Cvss Base Score	7.5	Attack Range	Network
Cvss Impact Score	6.4	Attack Complexity	Low
Cvss Expoit Score	10	Authentication	None Required
Calculate full CVSS 2.0 Vectors scores

Detail

The rehash mechanism in Perl 5.8.2 through 5.16.x allows context-dependent attackers to cause a denial of service (memory consumption and crash) via a crafted hash key.

Original Source

Url : http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-1667

CWE : Common Weakness Enumeration

%	Id	Name
100 %	CWE-399	Resource Management Errors

OVAL Definitions

Definition Id: oval:org.mitre.oval:def:18107

Oval ID:	oval:org.mitre.oval:def:18107
Title:	DSA-2641-1 perl - rehashing flaw
Description:	Yves Orton discovered a flaw in the rehashing code of Perl. This flaw could be exploited to carry out a denial of service attack against code that uses arbitrary user input as hash keys. Specifically an attacker could create a set of keys of a hash causing a denial of service via memory exhaustion.
Family:	unix	Class:	patch
Reference(s):	DSA-2641-1 CVE-2013-1667	Version:	7
Platform(s):	Debian GNU/Linux 6.0 Debian GNU/kFreeBSD 6.0	Product(s):	perl
Definition Synopsis:
Debian 6.0 is installed GNU/Linux or GNU/kFreeBSD kernel Debian GNU/Linux is installed AND Debian GNU/kFreeBSD is installed AND perl DPKG is earlier than 5.10.1-17squeeze6

Definition Id: oval:org.mitre.oval:def:18257

Oval ID:	oval:org.mitre.oval:def:18257
Title:	USN-1770-1 -- perl vulnerability
Description:	Perl could be made to stop responding if it received specially crafted input.
Family:	unix	Class:	patch
Reference(s):	USN-1770-1 CVE-2013-1667	Version:	7
Platform(s):	Ubuntu 12.10 Ubuntu 12.04 Ubuntu 11.10 Ubuntu 10.04 Ubuntu 8.04	Product(s):	perl
Definition Synopsis:
Release section Ubuntu 12.10 is installed AND perl DPKG is earlier than 5.14.2-13ubuntu0.2 AND Release section Ubuntu 12.04 is installed AND perl DPKG is earlier than 5.14.2-6ubuntu2.3 AND Release section Ubuntu 11.10 is installed AND perl DPKG is earlier than 5.12.4-4ubuntu0.2 AND Release section Ubuntu 10.04 is installed AND perl DPKG is earlier than 5.10.1-8ubuntu2.3 AND Release section Ubuntu 8.04 is installed AND perl DPKG is earlier than 5.8.8-12ubuntu0.8

Definition Id: oval:org.mitre.oval:def:18771

Oval ID:	oval:org.mitre.oval:def:18771
Title:	HP-UX running perl, Remote Denial of Service (DoS)
Description:	The rehash mechanism in Perl 5.8.2 through 5.16.x allows context-dependent attackers to cause a denial of service (memory consumption and crash) via a crafted hash key.
Family:	unix	Class:	vulnerability
Reference(s):	CVE-2013-1667	Version:	12
Platform(s):	HP-UX 11	Product(s):
Definition Synopsis:
platforms HP Release B.11.11 AND HP Release B.11.23 AND HP-UX B.11.31 AND filesets tests Perl5-32.PERL-RUN version is less than E.5.8.8.M AND Perl5-64.PERL-RUN version is less than E.5.8.8.M

Definition Id: oval:org.mitre.oval:def:20923

Oval ID:	oval:org.mitre.oval:def:20923
Title:	DEPRECATED: Security vulnerabilities in Perl for AIX
Description:	The rehash mechanism in Perl 5.8.2 through 5.16.x allows context-dependent attackers to cause a denial of service (memory consumption and crash) via a crafted hash key.
Family:	unix	Class:	vulnerability
Reference(s):	CVE-2013-1667	Version:	3
Platform(s):	IBM AIX 6.1 IBM AIX 7.1	Product(s):
Definition Synopsis:
platforms IBM AIX 6.1 is installed AND IBM AIX 7.1 is installed AND filesets File Version Exists perl.rte greater than or equal 5.3.12 AND perl.rte less than or equal 5.8.8.0 OR File Version Exists perl.rte greater than or equal 6.1.7 AND perl.rte less than or equal 5.8.8.0 OR File Version Exists perl.rte greater than or equal 6.1.8 AND perl.rte less than or equal 5.8.8.0 OR File Version Exists perl.rte greater than or equal 7.1.1 AND perl.rte less than or equal 5.10.1.0 OR File Version Exists perl.rte greater than or equal 7.1.2 AND perl.rte less than or equal 5.10.1.0

Definition Id: oval:org.mitre.oval:def:20945

Oval ID:	oval:org.mitre.oval:def:20945
Title:	Security vulnerabilities in Perl for AIX
Description:	The rehash mechanism in Perl 5.8.2 through 5.16.x allows context-dependent attackers to cause a denial of service (memory consumption and crash) via a crafted hash key.
Family:	unix	Class:	vulnerability
Reference(s):	CVE-2013-1667	Version:	3
Platform(s):	IBM AIX 6.1 IBM AIX 7.1	Product(s):
Definition Synopsis:
platforms IBM AIX 6.1 is installed AND IBM AIX 7.1 is installed AND filesets File Version Exists perl.rte greater than or equal 5.8.8.0 AND perl.rte less than or equal 5.8.8.123 OR File Version Exists perl.rte greater than or equal 5.8.8.0 AND perl.rte less than or equal 5.8.8.122 OR File Version Exists perl.rte greater than or equal 5.8.8.0 AND perl.rte less than or equal 5.8.8.244 OR File Version Exists perl.rte greater than or equal 5.10.1.0 AND perl.rte less than or equal 5.10.1.100 OR File Version Exists perl.rte greater than or equal 5.10.1.0 AND perl.rte less than or equal 5.10.1.150

Definition Id: oval:org.mitre.oval:def:20994

Oval ID:	oval:org.mitre.oval:def:20994
Title:	RHSA-2013:0685: perl security update (Moderate)
Description:	The rehash mechanism in Perl 5.8.2 through 5.16.x allows context-dependent attackers to cause a denial of service (memory consumption and crash) via a crafted hash key.
Family:	unix	Class:	patch
Reference(s):	RHSA-2013:0685-01 CESA-2013:0685 CVE-2012-5195 CVE-2012-5526 CVE-2012-6329 CVE-2013-1667	Version:	59
Platform(s):	Red Hat Enterprise Linux 5 Red Hat Enterprise Linux 6 CentOS Linux 5 CentOS Linux 6	Product(s):	perl
Definition Synopsis:
Operation system section Redhat 6 or Centos 6 release The operating system installed on the system is Red Hat Enterprise Linux 6 AND CentOS Linux 6.x Packages section perl-libs is earlier than 4:5.10.1-130.el6_4 AND perl-suidperl is earlier than 4:5.10.1-130.el6_4 AND perl-core is earlier than 0:5.10.1-130.el6_4 AND perl-Package-Constants is earlier than 1:0.02-130.el6_4 AND perl-ExtUtils-CBuilder is earlier than 1:0.27-130.el6_4 AND perl-IO-Compress-Base is earlier than 0:2.020-130.el6_4 AND perl-Time-HiRes is earlier than 4:1.9721-130.el6_4 AND perl-CGI is earlier than 0:3.51-130.el6_4 AND perl-Log-Message-Simple is earlier than 0:0.04-130.el6_4 AND perl-Archive-Extract is earlier than 1:0.38-130.el6_4 AND perl-version is earlier than 3:0.77-130.el6_4 AND perl-ExtUtils-ParseXS is earlier than 1:2.2003.0-130.el6_4 AND perl-Test-Simple is earlier than 0:0.92-130.el6_4 AND perl-Compress-Raw-Zlib is earlier than 1:2.020-130.el6_4 AND perl-Module-Loaded is earlier than 1:0.02-130.el6_4 AND perl-IO-Compress-Bzip2 is earlier than 0:2.020-130.el6_4 AND perl-Module-Pluggable is earlier than 1:3.90-130.el6_4 AND perl-Test-Harness is earlier than 0:3.17-130.el6_4 AND perl-Pod-Escapes is earlier than 1:1.04-130.el6_4 AND perl-parent is earlier than 1:0.221-130.el6_4 AND perl-IO-Compress-Zlib is earlier than 0:2.020-130.el6_4 AND perl-CPANPLUS is earlier than 0:0.88-130.el6_4 AND perl-Pod-Simple is earlier than 1:3.13-130.el6_4 AND perl-Module-Load is earlier than 1:0.16-130.el6_4 AND perl-File-Fetch is earlier than 0:0.26-130.el6_4 AND perl-Module-CoreList is earlier than 0:2.18-130.el6_4 AND perl-IO-Zlib is earlier than 1:1.09-130.el6_4 AND perl-Params-Check is earlier than 1:0.26-130.el6_4 AND perl-Compress-Zlib is earlier than 0:2.020-130.el6_4 AND perl is earlier than 4:5.10.1-130.el6_4 AND perl-Module-Load-Conditional is earlier than 0:0.30-130.el6_4 AND perl-Digest-SHA is earlier than 1:5.47-130.el6_4 AND perl-Locale-Maketext-Simple is earlier than 1:0.18-130.el6_4 AND perl-Time-Piece is earlier than 0:1.15-130.el6_4 AND perl-Archive-Tar is earlier than 0:1.58-130.el6_4 AND perl-devel is earlier than 4:5.10.1-130.el6_4 AND perl-Parse-CPAN-Meta is earlier than 1:1.40-130.el6_4 AND perl-ExtUtils-MakeMaker is earlier than 0:6.55-130.el6_4 AND perl-Module-Build is earlier than 1:0.3500-130.el6_4 AND perl-IPC-Cmd is earlier than 1:0.56-130.el6_4 AND perl-CPAN is earlier than 0:1.9402-130.el6_4 AND perl-Term-UI is earlier than 0:0.20-130.el6_4 AND perl-ExtUtils-Embed is earlier than 0:1.28-130.el6_4 AND perl-Object-Accessor is earlier than 1:0.34-130.el6_4 AND perl-Compress-Raw-Bzip2 is earlier than 0:2.020-130.el6_4 AND perl-Log-Message is earlier than 1:0.02-130.el6_4 AND Operation system section Redhat 5 or Centos 5 release The operating system installed on the system is Red Hat Enterprise Linux 5 AND CentOS Linux 5.x Packages section perl-suidperl is earlier than 4:5.8.8-40.el5_9 AND perl is earlier than 4:5.8.8-40.el5_9

Definition Id: oval:org.mitre.oval:def:23419

Oval ID:	oval:org.mitre.oval:def:23419
Title:	DEPRECATED: ELSA-2013:0685: perl security update (Moderate)
Description:	The rehash mechanism in Perl 5.8.2 through 5.16.x allows context-dependent attackers to cause a denial of service (memory consumption and crash) via a crafted hash key.
Family:	unix	Class:	patch
Reference(s):	ELSA-2013:0685-01 CVE-2012-5195 CVE-2012-5526 CVE-2012-6329 CVE-2013-1667	Version:	22
Platform(s):	Oracle Linux 5 Oracle Linux 6	Product(s):	perl
Definition Synopsis:
rpm test Oracle Linux 6.x AND rpm test perl-libs is earlier than 4:5.10.1-130.el6_4 AND perl-suidperl is earlier than 4:5.10.1-130.el6_4 AND perl-core is earlier than 0:5.10.1-130.el6_4 AND perl-Package-Constants is earlier than 1:0.02-130.el6_4 AND perl-ExtUtils-CBuilder is earlier than 1:0.27-130.el6_4 AND perl-IO-Compress-Base is earlier than 0:2.020-130.el6_4 AND perl-Time-HiRes is earlier than 4:1.9721-130.el6_4 AND perl-CGI is earlier than 0:3.51-130.el6_4 AND perl-Log-Message-Simple is earlier than 0:0.04-130.el6_4 AND perl-Archive-Extract is earlier than 1:0.38-130.el6_4 AND perl-version is earlier than 3:0.77-130.el6_4 AND perl-ExtUtils-ParseXS is earlier than 1:2.2003.0-130.el6_4 AND perl-Test-Simple is earlier than 0:0.92-130.el6_4 AND perl-Compress-Raw-Zlib is earlier than 1:2.020-130.el6_4 AND perl-Module-Loaded is earlier than 1:0.02-130.el6_4 AND perl-IO-Compress-Bzip2 is earlier than 0:2.020-130.el6_4 AND perl-Module-Pluggable is earlier than 1:3.90-130.el6_4 AND perl-Test-Harness is earlier than 0:3.17-130.el6_4 AND perl-Pod-Escapes is earlier than 1:1.04-130.el6_4 AND perl-parent is earlier than 1:0.221-130.el6_4 AND perl-IO-Compress-Zlib is earlier than 0:2.020-130.el6_4 AND perl-CPANPLUS is earlier than 0:0.88-130.el6_4 AND perl-Pod-Simple is earlier than 1:3.13-130.el6_4 AND perl-Module-Load is earlier than 1:0.16-130.el6_4 AND perl-File-Fetch is earlier than 0:0.26-130.el6_4 AND perl-Module-CoreList is earlier than 0:2.18-130.el6_4 AND perl-IO-Zlib is earlier than 1:1.09-130.el6_4 AND perl-Params-Check is earlier than 1:0.26-130.el6_4 AND perl-Compress-Zlib is earlier than 0:2.020-130.el6_4 AND perl is earlier than 4:5.10.1-130.el6_4 AND perl-Module-Load-Conditional is earlier than 0:0.30-130.el6_4 AND perl-Digest-SHA is earlier than 1:5.47-130.el6_4 AND perl-Locale-Maketext-Simple is earlier than 1:0.18-130.el6_4 AND perl-Time-Piece is earlier than 0:1.15-130.el6_4 AND perl-Archive-Tar is earlier than 0:1.58-130.el6_4 AND perl-devel is earlier than 4:5.10.1-130.el6_4 AND perl-Parse-CPAN-Meta is earlier than 1:1.40-130.el6_4 AND perl-ExtUtils-MakeMaker is earlier than 0:6.55-130.el6_4 AND perl-Module-Build is earlier than 1:0.3500-130.el6_4 AND perl-IPC-Cmd is earlier than 1:0.56-130.el6_4 AND perl-CPAN is earlier than 0:1.9402-130.el6_4 AND perl-Term-UI is earlier than 0:0.20-130.el6_4 AND perl-ExtUtils-Embed is earlier than 0:1.28-130.el6_4 AND perl-Object-Accessor is earlier than 1:0.34-130.el6_4 AND perl-Compress-Raw-Bzip2 is earlier than 0:2.020-130.el6_4 AND perl-Log-Message is earlier than 1:0.02-130.el6_4 OR rpm test Oracle Linux 5.x AND rpm test perl-suidperl is earlier than 4:5.8.8-40.el5_9 AND perl is earlier than 4:5.8.8-40.el5_9

Definition Id: oval:org.mitre.oval:def:23712

Oval ID:	oval:org.mitre.oval:def:23712
Title:	ELSA-2013:0685: perl security update (Moderate)
Description:	The rehash mechanism in Perl 5.8.2 through 5.16.x allows context-dependent attackers to cause a denial of service (memory consumption and crash) via a crafted hash key.
Family:	unix	Class:	patch
Reference(s):	ELSA-2013:0685-01 CVE-2012-5195 CVE-2012-5526 CVE-2012-6329 CVE-2013-1667	Version:	21
Platform(s):	Oracle Linux 5 Oracle Linux 6	Product(s):	perl
Definition Synopsis:
rpm test Oracle Linux 6.x AND rpm test perl-libs is earlier than 4:5.10.1-130.el6_4 AND perl-suidperl is earlier than 4:5.10.1-130.el6_4 AND perl-core is earlier than 0:5.10.1-130.el6_4 AND perl-Package-Constants is earlier than 1:0.02-130.el6_4 AND perl-ExtUtils-CBuilder is earlier than 1:0.27-130.el6_4 AND perl-IO-Compress-Base is earlier than 0:2.020-130.el6_4 AND perl-Time-HiRes is earlier than 4:1.9721-130.el6_4 AND perl-CGI is earlier than 0:3.51-130.el6_4 AND perl-Log-Message-Simple is earlier than 0:0.04-130.el6_4 AND perl-Archive-Extract is earlier than 1:0.38-130.el6_4 AND perl-version is earlier than 3:0.77-130.el6_4 AND perl-ExtUtils-ParseXS is earlier than 1:2.2003.0-130.el6_4 AND perl-Test-Simple is earlier than 0:0.92-130.el6_4 AND perl-Compress-Raw-Zlib is earlier than 1:2.020-130.el6_4 AND perl-Module-Loaded is earlier than 1:0.02-130.el6_4 AND perl-IO-Compress-Bzip2 is earlier than 0:2.020-130.el6_4 AND perl-Module-Pluggable is earlier than 1:3.90-130.el6_4 AND perl-Test-Harness is earlier than 0:3.17-130.el6_4 AND perl-Pod-Escapes is earlier than 1:1.04-130.el6_4 AND perl-parent is earlier than 1:0.221-130.el6_4 AND perl-IO-Compress-Zlib is earlier than 0:2.020-130.el6_4 AND perl-CPANPLUS is earlier than 0:0.88-130.el6_4 AND perl-Pod-Simple is earlier than 1:3.13-130.el6_4 AND perl-Module-Load is earlier than 1:0.16-130.el6_4 AND perl-File-Fetch is earlier than 0:0.26-130.el6_4 AND perl-Module-CoreList is earlier than 0:2.18-130.el6_4 AND perl-IO-Zlib is earlier than 1:1.09-130.el6_4 AND perl-Params-Check is earlier than 1:0.26-130.el6_4 AND perl-Compress-Zlib is earlier than 0:2.020-130.el6_4 AND perl is earlier than 4:5.10.1-130.el6_4 AND perl-Module-Load-Conditional is earlier than 0:0.30-130.el6_4 AND perl-Digest-SHA is earlier than 1:5.47-130.el6_4 AND perl-Locale-Maketext-Simple is earlier than 1:0.18-130.el6_4 AND perl-Time-Piece is earlier than 0:1.15-130.el6_4 AND perl-Archive-Tar is earlier than 0:1.58-130.el6_4 AND perl-devel is earlier than 4:5.10.1-130.el6_4 AND perl-Parse-CPAN-Meta is earlier than 1:1.40-130.el6_4 AND perl-ExtUtils-MakeMaker is earlier than 0:6.55-130.el6_4 AND perl-Module-Build is earlier than 1:0.3500-130.el6_4 AND perl-IPC-Cmd is earlier than 1:0.56-130.el6_4 AND perl-CPAN is earlier than 0:1.9402-130.el6_4 AND perl-Term-UI is earlier than 0:0.20-130.el6_4 AND perl-ExtUtils-Embed is earlier than 0:1.28-130.el6_4 AND perl-Object-Accessor is earlier than 1:0.34-130.el6_4 AND perl-Compress-Raw-Bzip2 is earlier than 0:2.020-130.el6_4 AND perl-Log-Message is earlier than 1:0.02-130.el6_4 OR rpm test Oracle Linux 5.x AND rpm test perl-suidperl is earlier than 4:5.8.8-40.el5_9 AND perl is earlier than 4:5.8.8-40.el5_9

Definition Id: oval:org.mitre.oval:def:29021

Oval ID:	oval:org.mitre.oval:def:29021
Title:	DSA-2641-2 -- perl -- rehashing flaw
Description:	Yves Orton discovered a flaw in the rehashing code of Perl. This flaw could be exploited to carry out a denial of service attack against code that uses arbitrary user input as hash keys. Specifically an attacker could create a set of keys of a hash causing a denial of service via memory exhaustion.
Family:	unix	Class:	patch
Reference(s):	DSA-2641-2 CVE-2013-1667	Version:	3
Platform(s):	Debian GNU/Linux 6.0 Debian GNU/kFreeBSD 6.0	Product(s):	perl libapache2-mod-perl2
Definition Synopsis:
Debian 6.0 is installed GNU/Linux or GNU/kFreeBSD kernel Debian GNU/Linux is installed AND Debian GNU/kFreeBSD is installed Packages match section perl is earlier than 0:5.10.1-17squeeze6 AND libapache2-mod-perl2 is earlier than 0:2.0.4-7+squeeze1

CPE : Common Platform Enumeration

Type	Description	Count
Application	Perl cpe:2.3:a:perl:perl:5.8.9:::::::* cpe:2.3:a:perl:perl:5.8.8:::::::* cpe:2.3:a:perl:perl:5.8.7:::::::* cpe:2.3:a:perl:perl:5.8.6:::::::* cpe:2.3:a:perl:perl:5.8.5:::::::* cpe:2.3:a:perl:perl:5.8.4:::::::* cpe:2.3:a:perl:perl:5.8.3:::::::* cpe:2.3:a:perl:perl:5.8.2:::::::* cpe:2.3:a:perl:perl:5.8.10:::::::* cpe:2.3:a:perl:perl:5.16.2:::::::* cpe:2.3:a:perl:perl:5.16.1:::::::* cpe:2.3:a:perl:perl:5.16.0:::::::* cpe:2.3:a:perl:perl:5.14.3:::::::* cpe:2.3:a:perl:perl:5.14.2:::::::* cpe:2.3:a:perl:perl:5.14.1:::::::* cpe:2.3:a:perl:perl:5.14.0:::::::* cpe:2.3:a:perl:perl:5.14.0:rc1:::::: cpe:2.3:a:perl:perl:5.14.0:rc2:::::: cpe:2.3:a:perl:perl:5.14.0:rc3:::::: cpe:2.3:a:perl:perl:5.13.9:::::::* cpe:2.3:a:perl:perl:5.13.8:::::::* cpe:2.3:a:perl:perl:5.13.7:::::::* cpe:2.3:a:perl:perl:5.13.6:::::::* cpe:2.3:a:perl:perl:5.13.5:::::::* cpe:2.3:a:perl:perl:5.13.4:::::::* cpe:2.3:a:perl:perl:5.13.3:::::::* cpe:2.3:a:perl:perl:5.13.2:::::::* cpe:2.3:a:perl:perl:5.13.11:::::::* cpe:2.3:a:perl:perl:5.13.10:::::::* cpe:2.3:a:perl:perl:5.13.1:::::::* cpe:2.3:a:perl:perl:5.13.0:::::::* cpe:2.3:a:perl:perl:5.12.4:::::::* cpe:2.3:a:perl:perl:5.12.3:rc3:::::: cpe:2.3:a:perl:perl:5.12.3:rc1:::::: cpe:2.3:a:perl:perl:5.12.3:::::::* cpe:2.3:a:perl:perl:5.12.3:rc2:::::: cpe:2.3:a:perl:perl:5.12.2:::::::* cpe:2.3:a:perl:perl:5.12.2:rc1:::::: cpe:2.3:a:perl:perl:5.12.1:::::::* cpe:2.3:a:perl:perl:5.12.1:rc2:::::: cpe:2.3:a:perl:perl:5.12.1:rc1:::::: cpe:2.3:a:perl:perl:5.12.0:rc4:::::: cpe:2.3:a:perl:perl:5.12.0:rc0:::::: cpe:2.3:a:perl:perl:5.12.0:rc5:::::: cpe:2.3:a:perl:perl:5.12.0:rc3:::::: cpe:2.3:a:perl:perl:5.12.0:rc2:::::: cpe:2.3:a:perl:perl:5.12.0:rc1:::::: cpe:2.3:a:perl:perl:5.12.0:::::::* cpe:2.3:a:perl:perl:5.11.5:::::::* cpe:2.3:a:perl:perl:5.11.4:::::::* cpe:2.3:a:perl:perl:5.11.3:::::::* cpe:2.3:a:perl:perl:5.11.2:::::::* cpe:2.3:a:perl:perl:5.11.1:::::::* cpe:2.3:a:perl:perl:5.11.0:::::::* cpe:2.3:a:perl:perl:5.10.1:rc1:::::: cpe:2.3:a:perl:perl:5.10.1:rc2:::::: cpe:2.3:a:perl:perl:5.10.1:::::::* cpe:2.3:a:perl:perl:5.10.0:rc1:::::: cpe:2.3:a:perl:perl:5.10.0:::::::* cpe:2.3:a:perl:perl:5.10.0:rc2:::::: cpe:2.3:a:perl:perl:5.10:::::::*	61

Nessus® Vulnerability Scanner

Date	Description
2016-06-22	Name : The remote OracleVM host is missing a security update. File : oraclevm_OVMSA-2016-0076.nasl - Type : ACT_GATHER_INFO
2015-09-16	Name : The remote device is missing a vendor-supplied security patch. File : f5_bigip_SOL15867.nasl - Type : ACT_GATHER_INFO
2015-01-19	Name : The remote Solaris system is missing a security patch for third-party software. File : solaris11_perl-58_20130521.nasl - Type : ACT_GATHER_INFO
2015-01-19	Name : The remote Solaris system is missing a security patch for third-party software. File : solaris11_perl-516_20130521.nasl - Type : ACT_GATHER_INFO
2015-01-19	Name : The remote Solaris system is missing a security patch for third-party software. File : solaris11_perl-512_20130521.nasl - Type : ACT_GATHER_INFO
2014-11-08	Name : The remote Red Hat host is missing a security update. File : redhat-RHSA-2013-0746.nasl - Type : ACT_GATHER_INFO
2014-06-13	Name : The remote openSUSE host is missing a security update. File : openSUSE-2013-225.nasl - Type : ACT_GATHER_INFO
2014-01-20	Name : The remote Gentoo host is missing one or more security-related patches. File : gentoo_GLSA-201401-11.nasl - Type : ACT_GATHER_INFO
2013-10-23	Name : The remote host is missing a Mac OS X update that fixes multiple security vul... File : macosx_10_9.nasl - Type : ACT_GATHER_INFO
2013-09-04	Name : The remote Amazon Linux AMI host is missing a security update. File : ala_ALAS-2013-177.nasl - Type : ACT_GATHER_INFO
2013-07-12	Name : The remote Oracle Linux host is missing one or more security updates. File : oraclelinux_ELSA-2013-0685.nasl - Type : ACT_GATHER_INFO
2013-04-20	Name : The remote Mandriva Linux host is missing one or more security updates. File : mandriva_MDVSA-2013-113.nasl - Type : ACT_GATHER_INFO
2013-04-03	Name : The remote Fedora host is missing a security update. File : fedora_2013-3673.nasl - Type : ACT_GATHER_INFO
2013-03-28	Name : The remote Scientific Linux host is missing one or more security updates. File : sl_20130326_perl_on_SL5_x.nasl - Type : ACT_GATHER_INFO
2013-03-27	Name : The remote Red Hat host is missing one or more security updates. File : redhat-RHSA-2013-0685.nasl - Type : ACT_GATHER_INFO
2013-03-27	Name : The remote CentOS host is missing one or more security updates. File : centos_RHSA-2013-0685.nasl - Type : ACT_GATHER_INFO
2013-03-22	Name : The remote Fedora host is missing a security update. File : fedora_2013-3436.nasl - Type : ACT_GATHER_INFO
2013-03-20	Name : The remote Ubuntu host is missing a security-related patch. File : ubuntu_USN-1770-1.nasl - Type : ACT_GATHER_INFO
2013-03-15	Name : The remote Slackware host is missing a security update. File : Slackware_SSA_2013-072-01.nasl - Type : ACT_GATHER_INFO
2013-03-13	Name : The remote SuSE 11 host is missing one or more security updates. File : suse_11_perl-130301.nasl - Type : ACT_GATHER_INFO
2013-03-13	Name : The remote SuSE 10 host is missing a security-related patch. File : suse_perl-8479.nasl - Type : ACT_GATHER_INFO
2013-03-12	Name : The remote FreeBSD host is missing one or more security-related updates. File : freebsd_pkg_68c1f75b882411e29996c48508086173.nasl - Type : ACT_GATHER_INFO
2013-03-11	Name : The remote Debian host is missing a security-related update. File : debian_DSA-2641.nasl - Type : ACT_GATHER_INFO

Sources (Detail)

Source	Url
APPLE	http://lists.apple.com/archives/security-announce/2013/Oct/msg00004.html
BID	http://www.securityfocus.com/bid/58311
CONFIRM	http://kb.juniper.net/InfoCenter/index?page=content&id=JSA10705 http://kb.juniper.net/InfoCenter/index?page=content&id=JSA10735 http://perl5.git.perl.org/perl.git/commitdiff/6e79fe5 http://perl5.git.perl.org/perl.git/commitdiff/9d83adc http://perl5.git.perl.org/perl.git/commitdiff/d59e31f http://www.oracle.com/technetwork/topics/security/ovmbulletinjul2016-3090546.... https://wiki.mageia.org/en/Support/Advisories/MGASA-2013-0094
DEBIAN	http://www.debian.org/security/2013/dsa-2641
HP	http://marc.info/?l=bugtraq&m=137891988921058&w=2
MANDRIVA	http://www.mandriva.com/security/advisories?name=MDVSA-2013:113
MISC	http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=702296 https://bugzilla.redhat.com/show_bug.cgi?id=912276
MLIST	http://www.nntp.perl.org/group/perl.perl5.porters/2013/03/msg199755.html
OSVDB	http://osvdb.org/90892
OVAL	https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.ova...
REDHAT	http://rhn.redhat.com/errata/RHSA-2013-0685.html
SECUNIA	http://secunia.com/advisories/52472 http://secunia.com/advisories/52499
UBUNTU	http://www.ubuntu.com/usn/USN-1770-1
XF	https://exchange.xforce.ibmcloud.com/vulnerabilities/82598

Alert History

If you want to see full details history, please login or register.

Date	Informations
2021-05-04 12:24:26	Multiple Updates
2021-04-22 01:29:14	Multiple Updates
2020-05-23 00:36:35	Multiple Updates
2019-03-19 12:05:35	Multiple Updates
2017-09-19 09:25:54	Multiple Updates
2017-08-29 09:24:13	Multiple Updates
2016-12-08 09:23:26	Multiple Updates
2016-12-03 09:23:53	Multiple Updates
2016-09-09 09:23:16	Multiple Updates
2016-06-28 19:22:46	Multiple Updates
2016-06-23 13:29:27	Multiple Updates
2016-04-26 22:59:22	Multiple Updates
2015-09-17 13:23:32	Multiple Updates
2015-01-21 13:26:05	Multiple Updates
2014-11-08 13:30:40	Multiple Updates
2014-06-14 13:34:55	Multiple Updates
2014-02-17 11:18:05	Multiple Updates
2014-02-07 13:20:19	Multiple Updates
2014-01-23 21:20:47	Multiple Updates
2014-01-17 13:19:30	Multiple Updates
2013-12-05 17:19:53	Multiple Updates
2013-10-31 13:20:00	Multiple Updates
2013-05-16 17:03:15	Multiple Updates
2013-05-10 22:29:52	Multiple Updates
2013-04-11 13:21:05	Multiple Updates
2013-03-21 00:18:58	Multiple Updates
2013-03-16 18:31:06	First insertion

Global Informations

Type	Count
CWE ID(s)	1
Oval ID(s)	9
CPE ID(s)	61
Sources(s)	22
Nessus® Exploit(s)	23

	Related
7.5	USN-1770-1
7.5	RHSA-2013:0685
7.5	MDVSA-2013:113
7.5	HPSBUX02928 SSR...
7.5	GLSA-201401-11
7.5	DSA-2641
Info : listing not affected by your CVSS Env Score

Same Subject	Severity
Login to view 6 more Alert(s)

7.5 - CVE-2013-1667

Executive Summary

Security-Database Scoring CVSS v3

Security-Database Scoring CVSS v2

Detail

Original Source

CWE : Common Weakness Enumeration

OVAL Definitions

CPE : Common Platform Enumeration

Nessus® Vulnerability Scanner

Sources (Detail)

Alert History

Global Informations

Open Standards

Other Databases

COMPANY

STANDARDS

RECENT POSTS

MENU