Hugo van der Sanden

3 exploits Active since Jun 2020
CVE-2020-10878 WRITEUP HIGH WRITEUP
Perl < 5.30.3 - Integer Overflow via Regular Expression Compilation
Perl before 5.30.3 has an integer overflow related to mishandling of a "PL_regkind[OP(n)] == NOTHING" situation. A crafted regular expression could lead to malformed bytecode with a possibility of instruction injection.
CVSS 8.6
CVE-2020-10878 WRITEUP HIGH WRITEUP
Perl < 5.30.3 - Integer Overflow via Regular Expression Compilation
Perl before 5.30.3 has an integer overflow related to mishandling of a "PL_regkind[OP(n)] == NOTHING" situation. A crafted regular expression could lead to malformed bytecode with a possibility of instruction injection.
CVSS 8.6
CVE-2020-12723 WRITEUP HIGH WRITEUP
Perl < 5.30.3 - Buffer Overflow via Recursive S_study_chunk Calls
regcomp.c in Perl before 5.30.3 allows a buffer overflow via a crafted regular expression because of recursive S_study_chunk calls.
CVSS 7.5