What is the severity of CVE-2014-4720?

CVE-2014-4720 is classified as a denial of service vulnerability due to excessive CPU consumption caused by inefficient regular expressions in the Email::Address module.

How do I fix CVE-2014-4720?

To fix CVE-2014-4720, you should update the Email::Address module to version 1.904 or later.

What versions are affected by CVE-2014-4720?

CVE-2014-4720 affects Email::Address versions prior to 1.904.

Can CVE-2014-4720 lead to remote attacks?

Yes, CVE-2014-4720 allows remote attackers to exploit the vulnerability to cause a denial of service.

What programming language is impacted by CVE-2014-4720?

CVE-2014-4720 affects the Perl programming language due to the Email::Address module.

Vulnerability/
CVE-2014-4720

medium

6/7/2014

3/10/2022

6/8/2024

CVE-2014-4720

First published: Sun Jul 06 2014(Updated: )

Email::Address module before 1.904 for Perl uses an inefficient regular expression, which allows remote attackers to cause a denial of service (CPU consumption) via vectors related to "backtracking into the phrase," a different vulnerability than CVE-2014-0477.

Credit: cve@mitre.org

Affected Software	Affected Version	How to fix
email\ \	<=1.903
email\ \	=address_module_project-email\
email\ \	=address_module_project-email\
email\ \	=address_module_project-email\
email\ \	=address_module_project-email\
email\ \	=address_module_project-email\
email\ \	=address_module_project-email\
email\ \	=address_module_project-email\
email\ \	=address_module_project-email\
email\ \	=address_module_project-email\
email\ \	=address_module_project-email\
email\ \	=address_module_project-email\
email\ \	=address_module_project-email\
email\ \	=address_module_project-email\
email\ \	=address_module_project-email\
email\ \	=address_module_project-email\
email\ \	=address_module_project-email\
email\ \	=address_module_project-email\
email\ \	=address_module_project-email\
email\ \	=address_module_project-email\
email\ \	=address_module_project-email\
email\ \	=address_module_project-email\
email\ \	=address_module_project-email\
email\ \	=address_module_project-email\
email\ \	=address_module_project-email\
email\ \	=address_module_project-email\
email\ \	=address_module_project-email\
email\ \	=address_module_project-email\
email\ \	=address_module_project-email\
email\ \	=address_module_project-email\
email\ \	=address_module_project-email\
email\ \	=address_module_project-email\
email\ \	=address_module_project-email\
email\ \	=address_module_project-email\
email\ \	=address_module_project-email\

Never miss a vulnerability like this again

Reference Links

Frequently Asked Questions

What is the severity of CVE-2014-4720?
CVE-2014-4720 is classified as a denial of service vulnerability due to excessive CPU consumption caused by inefficient regular expressions in the Email::Address module.
How do I fix CVE-2014-4720?
To fix CVE-2014-4720, you should update the Email::Address module to version 1.904 or later.
What versions are affected by CVE-2014-4720?
CVE-2014-4720 affects Email::Address versions prior to 1.904.
Can CVE-2014-4720 lead to remote attacks?
Yes, CVE-2014-4720 allows remote attackers to exploit the vulnerability to cause a denial of service.
What programming language is impacted by CVE-2014-4720?
CVE-2014-4720 affects the Perl programming language due to the Email::Address module.

agent/type
agent/softwarecombine
agent/first-publish-date
agent/references
collector/mitre-cve
source/MITRE
agent/author
agent/severity
agent/last-modified-date
agent/event
agent/description
agent/source
agent/tags
collector/nvd-index
agent/software-canonical-lookup-request
vendor/email\
canonical/email\ \
version/email\ \/1.903
version/email\ \/address_module_project-email\