Perl 5.22 Buffer Overflow Vulnerability
High Log Correlation Engine Plugin ID 802000
Synopsis
The specific version of Perl that this Apache server is running is vulnerable to a buffer overflow attack..
Description
Perl contains an overflow condition in the VDir::MapPathA() function. The issue is triggered as user-supplied input is not properly validated. This may allow a context-dependent attacker to cause a buffer overflow, resulting in a denial of service or potentially allowing the execution of arbitrary code.
Technical Information: Note: Programming language vulnerability. This code is used in a wide variety of software and the issue may manifest in a number of different ways. Depending on the implementation, it varies if this vulnerability requires local access or may be exploited remotely.
Solution
A patch has been released to address this issue. Apply the vendor's patch or update to a later version.