Buffer Overflow in win32_stat Function Allows Arbitrary Command Execution

Buffer Overflow in win32_stat Function Allows Arbitrary Command Execution

CVE-2004-0377 · HIGH Severity

AV:N/AC:L/AU:N/C:C/I:C/A:C

Buffer overflow in the win32_stat function for (1) ActiveState's ActivePerl and (2) Larry Wall's Perl before 5.8.3 allows local or remote attackers to execute arbitrary commands via filenames that end in a backslash character.

Learn more about our Web Application Penetration Testing UK.