What is the severity of CVE-2011-2728?

CVE-2011-2728 is classified as a denial of service vulnerability.

How do I fix CVE-2011-2728?

To fix CVE-2011-2728, upgrade Perl to version 5.14.2 or later.

What causes the vulnerability CVE-2011-2728?

CVE-2011-2728 is caused by uninitialized pointer dereference in the bsd_glob function of the File::Glob module.

Which versions of Perl are affected by CVE-2011-2728?

CVE-2011-2728 affects Perl versions prior to 5.14.2.

Can CVE-2011-2728 be exploited remotely?

Yes, CVE-2011-2728 can potentially be exploited remotely through crafted glob expressions.

Vulnerability/
CVE-2011-2728

medium

4.3

CWE

NVD-CWE-Other

21/12/2012

6/8/2024

CVE-2011-2728

First published: Fri Dec 21 2012(Updated: )

The bsd_glob function in the File::Glob module for Perl before 5.14.2 allows context-dependent attackers to cause a denial of service (crash) via a glob expression with the GLOB_ALTDIRFUNC flag, which triggers an uninitialized pointer dereference.

Credit: secalert@redhat.com

Affected Software	Affected Version	How to fix
Perl	=2.10.0
Perl	=2.10.3
Perl	=5.8.0
Perl	=2.6.4
Perl	=5.6.0
Perl	=2.3.0
Perl	=2.11.3
Perl	=2.15.0
Perl	=2.17.1
Perl	=5.8.4
Perl	=1.44
Perl	=2.8.7
Perl	=5.12.0-rc1
Perl	=5.13.10
Perl	=2.11.6
Perl	=5.12.0-rc4
Perl	=2.7.2
Perl	=2.11.0
Perl	=5.8.1
Perl	=2.11.1
Perl	=5.8.9
Perl	=1.42
Perl	=2.4.0
Perl	=2.8.5
Perl	=2.10.7
Perl	=2.11.2
Perl	=2.16.1
Perl	=2.6.2
Perl	=5.12.0-rc3
Perl	=5.6.1
Perl	=2.18.1
Perl	=5.12.1-rc1
Perl	=5.13.8
Perl	=5.11.2
Perl	=5.13.0
Perl	=1.20
Perl	=2.10.6
Perl	=1.21
Perl	=5.14.0-rc2
Perl	=5.12.3-rc3
Perl	=5.13.5
Perl	=5.13.3
Perl	=5.9.2
Perl	=2.17.0
Perl	=1.01
Perl	=5.13.6
Perl	=2.1.0
Perl	=1.41
Perl	=1.47
Perl	=2.11.5
Perl	=5.10.0-rc2
Perl	=2.11.4
Perl	=5.13.11
Perl	=1.22
Perl	=2.2.1
Perl	=2.5.0
Perl	=5.8.2
Perl	=5.8.10
Perl	=2.2.2
Perl	=5.11.1
Perl	=5.8.5
Perl	=5.13.7
Perl	=2.7.1
Perl	=2.10.1
Perl	=5.10
Perl	=5.13.1
Perl	=5.10.1
Perl	=2.1.3
Perl	=5.12.3
Perl	=5.12.1-rc2
Perl	=2.7.0
Perl	=5.12.0-rc2
Perl	=2.11.7
Perl	=2.8.1
Perl	=2.13.0
Perl	=5.14.0
Perl	=1.45
Perl	=5.12.0
Perl	=2.8.6
Perl	=5.12.3-rc1
Perl	=5.11.5
Perl	=2.6.3
Perl	=2.6.6
Perl	=2.6.1
Perl	<=5.14.1
Perl	=1.32
Perl	=2.16.0
Perl	=2.9.0
Perl	=2.14.1
Perl	=1.49
Perl	=2.8.4
Perl	=5.11.0
Perl	=2.12.0
Perl	=2.9.1
Perl	=2.10.2
Perl	=5.12.2
Perl	=2.6.0
Perl	=1.43
Perl	=5.8.7
Perl	=2.1.1
Perl	=2.8.2
Perl	=5.14.0-rc1
Perl	=2.8.8
Perl	=5.11.3
Perl	=2.9.2
Perl	=5.13.4
Perl	=5.14.0-rc3
Perl	=1.40
Perl	=2.15.1
Perl	=2.10.5
Perl	=5.10.1-rc1
Perl	=2.17.2
Perl	=5.11.4
Perl	=1.46
Perl	=2.10.4
Perl	=5.13.9
Perl	=2.1.2
Perl	=2.5.1
Perl	=5.12.3-rc2
Perl	=2.8.0
Perl	=2.11.8
Perl	=5.12.2-rc1
Perl	=5.12.0-rc0
Perl	=1.31
Perl	=5.8.3
Perl	=5.12.0-rc5
Perl	=2.6.5
Perl	=2.0.0
Perl	=5.8.6
Perl	=1.00
Perl	=2.8.3
Perl	=5.10.0
Perl	=5.8.8
Perl	=2.2.0
Perl	=5.13.2
Perl	=5.10.0-rc1
Perl	=2.14.0
Perl	=1.48
Perl	=5.12.1
Perl	=2.18.0
Perl	=5.10.1-rc2

Never miss a vulnerability like this again

Reference Links

Frequently Asked Questions

What is the severity of CVE-2011-2728?
CVE-2011-2728 is classified as a denial of service vulnerability.
How do I fix CVE-2011-2728?
To fix CVE-2011-2728, upgrade Perl to version 5.14.2 or later.
What causes the vulnerability CVE-2011-2728?
CVE-2011-2728 is caused by uninitialized pointer dereference in the bsd_glob function of the File::Glob module.
Which versions of Perl are affected by CVE-2011-2728?
CVE-2011-2728 affects Perl versions prior to 5.14.2.
Can CVE-2011-2728 be exploited remotely?
Yes, CVE-2011-2728 can potentially be exploited remotely through crafted glob expressions.

agent/softwarecombine
agent/type
collector/mitre-cve
source/MITRE
agent/last-modified-date
agent/author
agent/references
agent/severity
agent/weakness
agent/first-publish-date
agent/description
agent/event
agent/source
agent/tags
collector/nvd-historical
agent/software-canonical-lookup-request
collector/nvd-index
vendor/perl
canonical/perl
version/perl/2.10.0
version/perl/2.10.3
version/perl/5.8.0
version/perl/2.6.4
version/perl/5.6.0
version/perl/2.3.0
version/perl/2.11.3
version/perl/2.15.0
version/perl/2.17.1
version/perl/5.8.4
version/perl/1.44
version/perl/2.8.7
version/perl/5.12.0-rc1
version/perl/5.13.10
version/perl/2.11.6
version/perl/5.12.0-rc4
version/perl/2.7.2
version/perl/2.11.0
version/perl/5.8.1
version/perl/2.11.1
version/perl/5.8.9
version/perl/1.42
version/perl/2.4.0
version/perl/2.8.5
version/perl/2.10.7
version/perl/2.11.2
version/perl/2.16.1
version/perl/2.6.2
version/perl/5.12.0-rc3
version/perl/5.6.1
version/perl/2.18.1
version/perl/5.12.1-rc1
version/perl/5.13.8
version/perl/5.11.2
version/perl/5.13.0
version/perl/1.20
version/perl/2.10.6
version/perl/1.21
version/perl/5.14.0-rc2
version/perl/5.12.3-rc3
version/perl/5.13.5
version/perl/5.13.3
version/perl/5.9.2
version/perl/2.17.0
version/perl/1.01
version/perl/5.13.6
version/perl/2.1.0
version/perl/1.41
version/perl/1.47
version/perl/2.11.5
version/perl/5.10.0-rc2
version/perl/2.11.4
version/perl/5.13.11
version/perl/1.22
version/perl/2.2.1
version/perl/2.5.0
version/perl/5.8.2
version/perl/5.8.10
version/perl/2.2.2
version/perl/5.11.1
version/perl/5.8.5
version/perl/5.13.7
version/perl/2.7.1
version/perl/2.10.1
version/perl/5.10
version/perl/5.13.1
version/perl/5.10.1
version/perl/2.1.3
version/perl/5.12.3
version/perl/5.12.1-rc2
version/perl/2.7.0
version/perl/5.12.0-rc2
version/perl/2.11.7
version/perl/2.8.1
version/perl/2.13.0
version/perl/5.14.0
version/perl/1.45
version/perl/5.12.0
version/perl/2.8.6
version/perl/5.12.3-rc1
version/perl/5.11.5
version/perl/2.6.3
version/perl/2.6.6
version/perl/2.6.1
version/perl/5.14.1
version/perl/1.32
version/perl/2.16.0
version/perl/2.9.0
version/perl/2.14.1
version/perl/1.49
version/perl/2.8.4
version/perl/5.11.0
version/perl/2.12.0
version/perl/2.9.1
version/perl/2.10.2
version/perl/5.12.2
version/perl/2.6.0
version/perl/1.43
version/perl/5.8.7
version/perl/2.1.1
version/perl/2.8.2
version/perl/5.14.0-rc1
version/perl/2.8.8
version/perl/5.11.3
version/perl/2.9.2
version/perl/5.13.4
version/perl/5.14.0-rc3
version/perl/1.40
version/perl/2.15.1
version/perl/2.10.5
version/perl/5.10.1-rc1
version/perl/2.17.2
version/perl/5.11.4
version/perl/1.46
version/perl/2.10.4
version/perl/5.13.9
version/perl/2.1.2
version/perl/2.5.1
version/perl/5.12.3-rc2
version/perl/2.8.0
version/perl/2.11.8
version/perl/5.12.2-rc1
version/perl/5.12.0-rc0
version/perl/1.31
version/perl/5.8.3
version/perl/5.12.0-rc5
version/perl/2.6.5
version/perl/2.0.0
version/perl/5.8.6
version/perl/1.00
version/perl/2.8.3
version/perl/5.10.0
version/perl/5.8.8
version/perl/2.2.0
version/perl/5.13.2
version/perl/5.10.0-rc1
version/perl/2.14.0
version/perl/1.48
version/perl/5.12.1
version/perl/2.18.0
version/perl/5.10.1-rc2

CVE-2011-2728

Never miss a vulnerability like this again

Reference Links

Frequently Asked Questions

What is the severity of CVE-2011-2728?

How do I fix CVE-2011-2728?

What causes the vulnerability CVE-2011-2728?

Which versions of Perl are affected by CVE-2011-2728?

Can CVE-2011-2728 be exploited remotely?

Company

Resources

Contact

Frequently Asked Questions

What is the severity of CVE-2011-2728?

How do I fix CVE-2011-2728?

What causes the vulnerability CVE-2011-2728?

Which versions of Perl are affected by CVE-2011-2728?

Can CVE-2011-2728 be exploited remotely?