CVE-2004-2286
ActivePerl - Denial of Service via Integer Overflow in Duplication Operator
Title source: llmExploitation Summary
EIP tracks 1 public exploit for CVE-2004-2286. PoCs published by Matt Murphy.
AI-analyzed exploit summary This exploit demonstrates an integer overflow vulnerability in ActiveState Perl and other implementations. The issue arises from insufficient bounds checking on multiplier data passed to a Perl duplicator statement, potentially leading to arbitrary code execution or denial of service.
Description
Integer overflow in the duplication operator in ActivePerl allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a large multiplier, which may trigger a buffer overflow.
Exploits (1)
This exploit demonstrates an integer overflow vulnerability in ActiveState Perl and other implementations. The issue arises from insufficient bounds checking on multiplier data passed to a Perl duplicator statement, potentially leading to arbitrary code execution or denial of service.