Activestate Activeperl — known CVE vulnerabilities
Every CVE whose affected-product data names Activestate Activeperl, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (6)
CVE-2004-0377 — CVSS 10.0 (critical): Buffer overflow in the win32_stat function for (1) ActiveState's ActivePerl and (2) Larry Wall's Perl before 5.8.3 allows local or remote…
CVE-2001-0815 — CVSS 7.5 (high): Buffer overflow in PerlIS.dll in Activestate ActivePerl 5.6.1.629 and earlier allows remote attackers to execute arbitrary code via an HTTP…
CVE-2004-2286 — CVSS 7.5 (high): Integer overflow in the duplication operator in ActivePerl allows remote attackers to cause a denial of service (crash) and possibly…
CVE-2012-5377 — CVSS 6.0 (medium): Untrusted search path vulnerability in the installation functionality in ActivePerl 5.16.1.1601, when installed in the top-level C:\…
CVE-2006-2856 — CVSS 4.6 (medium): ActiveState ActivePerl 5.8.8.817 for Windows configures the site/lib directory with "Users" group permissions for changing files, which…
CVE-2004-2022 — CVSS 2.1 (low): ActivePerl 5.8.x and others, and Larry Wall's Perl 5.6.1 and others, when running on Windows systems, allows attackers to cause a denial of…