CVE-2004-2286

ActivePerl - Denial of Service via Integer Overflow in Duplication Operator

Title source: llm
STIX 2.1

Exploitation Summary

EIP tracks 1 public exploit for CVE-2004-2286. PoCs published by Matt Murphy.

AI-analyzed exploit summary This exploit demonstrates an integer overflow vulnerability in ActiveState Perl and other implementations. The issue arises from insufficient bounds checking on multiplier data passed to a Perl duplicator statement, potentially leading to arbitrary code execution or denial of service.

Description

Integer overflow in the duplication operator in ActivePerl allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a large multiplier, which may trigger a buffer overflow.

Exploits (1)

exploitdb WORKING POC VERIFIED
by Matt Murphy · textdosmultiple
https://www.exploit-db.com/exploits/24130

This exploit demonstrates an integer overflow vulnerability in ActiveState Perl and other implementations. The issue arises from insufficient bounds checking on multiplier data passed to a Perl duplicator statement, potentially leading to arbitrary code execution or denial of service.

Classification
Working Poc 90%
Attack Type
Rce
Complexity
Trivial
Reliability
Theoretical
Target: ActiveState Perl (and other implementations)
No auth needed
Prerequisites: A vulnerable Perl implementation
devstral-2 · analyzed Feb 16, 2026 Full analysis →

References (3)

Core 3
Core References
Third Party Advisory, VDB Entry vdb-entry x_refsource_xf
https://exchange.xforce.ibmcloud.com/vulnerabilities/16224
Exploit vdb-entry x_refsource_bid
http://www.securityfocus.com/bid/10380
Third Party Advisory mailing-list x_refsource_fulldisc
http://archives.neohapsis.com/archives/fulldisclosure/2004-05/0878.html

Scores

EPSS 0.0800
EPSS Percentile 94.0%

Details

Status published
Products (20)
activestate/activeperl 5.6.1
activestate/activeperl 5.6.1.630
activestate/activeperl 5.6.2
activestate/activeperl 5.6.3
activestate/activeperl 5.7.1
activestate/activeperl 5.7.2
activestate/activeperl 5.7.3
activestate/activeperl 5.8
activestate/activeperl 5.8.1
activestate/activeperl 5.8.3
... and 10 more
Published Dec 31, 2004
Tracked Since Feb 18, 2026