Off-by-one error in the inflate function in Zlib.xs in Compress::Raw::Zlib Perl module before 2.017, as used in AMaViS, SpamAssassin, and possibly other products, allows context-dependent attackers to cause a denial of service (hang or crash) via a crafted zlib compressed stream that triggers a heap-based buffer overflow, as exploited in the wild by Trojan.Downloader-71014 in June 2009.
Name | Vendor | Start Version | End Version |
---|---|---|---|
Compress-raw-zlib_perl_module | Paul_marquess | 2.011 | 2.011 |
Compress-raw-zlib_perl_module | Paul_marquess | 2.004 | 2.004 |
Compress-raw-zlib_perl_module | Paul_marquess | * | 2.015 |
Compress-raw-zlib_perl_module | Paul_marquess | 2.001 | 2.001 |
Compress-raw-zlib_perl_module | Paul_marquess | 2.002 | 2.002 |
Compress-raw-zlib_perl_module | Paul_marquess | 2.009 | 2.009 |
Compress-raw-zlib_perl_module | Paul_marquess | 2.008 | 2.008 |
Compress-raw-zlib_perl_module | Paul_marquess | 2.014 | 2.014 |
Compress-raw-zlib_perl_module | Paul_marquess | 2.006 | 2.006 |
Compress-raw-zlib_perl_module | Paul_marquess | 2.012 | 2.012 |
Compress-raw-zlib_perl_module | Paul_marquess | 2.003 | 2.003 |
Compress-raw-zlib_perl_module | Paul_marquess | 2.005 | 2.005 |
Compress-raw-zlib_perl_module | Paul_marquess | 2.010 | 2.010 |