Algorithmic Complexity Denial of Service Vulnerability in Email::Address Module

Algorithmic Complexity Denial of Service Vulnerability in Email::Address Module

CVE-2018-12558 · MEDIUM Severity

AV:N/AC:L/AU:N/C:N/I:N/A:P

The parse() method in the Email::Address module through 1.909 for Perl is vulnerable to Algorithmic complexity on specially prepared input, leading to Denial of Service. Prepared special input that caused this problem contained 30 form-field characters ("\f").

Learn more about our Web Application Penetration Testing UK.