CVE-2009-1391

EXPLOITED IN THE WILD

Paul Marquess Compress-raw-zlib Perl Module < 2.015 - Numeric Error

Title source: rule

Description

Off-by-one error in the inflate function in Zlib.xs in Compress::Raw::Zlib Perl module before 2.017, as used in AMaViS, SpamAssassin, and possibly other products, allows context-dependent attackers to cause a denial of service (hang or crash) via a crafted zlib compressed stream that triggers a heap-based buffer overflow, as exploited in the wild by Trojan.Downloader-71014 in June 2009.

Exploits (1)

exploitdb WRITEUP VERIFIED

by Leo Bergolth · textremotelinux

https://www.exploit-db.com/exploits/33032

View Code ZIP pw:eip

References (18)

[Various Sources] http://article.gmane.org/gmane.mail.virus.amavis.user/33635

[Exploit] http://article.gmane.org/gmane.mail.virus.amavis.user/33638

[Mailing List] http://lists.opensuse.org/opensuse-security-announce/2009-07/msg00002.html

[Third Party Advisory, VDB Entry] http://osvdb.org/55041

[Vendor Advisory] http://secunia.com/advisories/35422

[Various Sources] http://thread.gmane.org/gmane.mail.virus.amavis.user/33635

[Vendor Advisory] http://www.mandriva.com/security/advisories?name=MDVSA-2009:157

[Exploit, Patch] http://www.securityfocus.com/bid/35307

[Patch, Vendor Advisory] http://www.vupen.com/english/advisories/2009/1571

[Issue Tracking] https://bugs.gentoo.org/show_bug.cgi?id=273141

[Exploit] https://bugzilla.redhat.com/show_bug.cgi?id=504386

[Third Party Advisory, VDB Entry] https://exchange.xforce.ibmcloud.com/vulnerabilities/51062

[Vendor Advisory] https://usn.ubuntu.com/794-1/

[Vendor Advisory] https://www.redhat.com/archives/fedora-package-announce/2009-July/msg00607.html

[Third Party Advisory] http://security.gentoo.org/glsa/glsa-200908-07.xml

[Third Party Advisory] http://secunia.com/advisories/35685

[Third Party Advisory] http://secunia.com/advisories/35689

[Third Party Advisory] http://secunia.com/advisories/35876

Scores

EPSS 0.1837

EPSS Percentile 95.2%

Details

VulnCheck KEV 2009-06-16

InTheWild.io 2018-10-03

CWE

CWE-189

Status published

Products (13)

paul_marquess/compress-raw-zlib_perl_module 2.001

paul_marquess/compress-raw-zlib_perl_module 2.002

paul_marquess/compress-raw-zlib_perl_module 2.003

paul_marquess/compress-raw-zlib_perl_module 2.004

paul_marquess/compress-raw-zlib_perl_module 2.005

paul_marquess/compress-raw-zlib_perl_module 2.006

paul_marquess/compress-raw-zlib_perl_module 2.008

paul_marquess/compress-raw-zlib_perl_module 2.009

paul_marquess/compress-raw-zlib_perl_module 2.010

paul_marquess/compress-raw-zlib_perl_module 2.011

... and 3 more

Published Jun 16, 2009

Tracked Since Feb 18, 2026