⚠ Exploited in the wild

Exploitation observed in the wild. Not yet on CISA KEV.

CVE-2009-1391 — Off-by-one Error in Libcompress-raw-bzip2-perl

CWE-189 CWE-193 — Off-by-one Error CWE-190 — Integer Overflow or Wraparound19 documents9 sources

Severity

6.8MEDIUMNVD

NVD4.3

EPSS

18.4%

top 4.76%

CISA KEV

Not in KEV

Exploit

Exploited in wild

Active exploitation observed

Affected products

Perl Debian Libcompress-raw-bzip2-perl Debian Libcompress-raw-zlib-perl +3 more

Timeline

PublishedJun 16

Latest updateMay 2

Description

Off-by-one error in the inflate function in Zlib.xs in Compress::Raw::Zlib Perl module before 2.017, as used in AMaViS, SpamAssassin, and possibly other products, allows context-dependent attackers to cause a denial of service (hang or crash) via a crafted zlib compressed stream that triggers a heap-based buffer overflow, as exploited in the wild by Trojan.Downloader-71014 in June 2009.

CVSS vector

AV:N/AC:M/C:P/I:P/A:PExploitability: 8.6 | Impact: 6.4

Affected Packages6 packages

▶NVDpaul_marquess/compress-raw-zlib_perl_module2.015+12

▶debiandebian/libcompress-raw-zlib-perl< libcompress-raw-zlib-perl 2.015-2 (bookworm)

▶debiandebian/libcompress-raw-bzip2-perl< libcompress-raw-bzip2-perl 2.018-1 (bookworm)

▶debiandebian/perl< libcompress-raw-zlib-perl 2.015-2 (bookworm)

▶Debianperl/perl< 5.10.0-23+3

Patches

Patch: www.securityfocus.com ↗Patch: www.vupen.com ↗Patch: www.securityfocus.com ↗

🔴Vulnerability Details

GHSA

GHSA-353f-jcfv-fpmh: Off-by-one error in the inflate function in Zlib↗2022-05-02

▶

GHSA

GHSA-4x36-p66f-4f99: Off-by-one error in the bzinflate function in Bzip2↗2022-05-02

▶

OSV

CVE-2009-1884: Off-by-one error in the bzinflate function in Bzip2↗2009-08-19

▶

OSV

CVE-2009-1391: Off-by-one error in the inflate function in Zlib↗2009-06-16

▶

VulnCheck

AMaViS, SpamAssassin Compress::Raw::Zlib Perl Module Denial of Service↗2009

▶

💥Exploits & PoCs

Exploit-DB

Compress::Raw::Zlib Perl Module - Remote Code Execution↗2009-05-11

▶

📋Vendor Advisories

Red Hat

(32-bit): Multiple integer overflows in the printf implementation↗2009-09-03

▶

Red Hat

perl-Compress-Raw-Bzip2: Off-by-one error in the bzinflate function - DoS (crash)↗2009-08-18

▶

Ubuntu

Perl vulnerability↗2009-07-02

▶

Debian

CVE-2009-1391: libcompress-raw-zlib-perl - Off-by-one error in the inflate function in Zlib.xs in Compress::Raw::Zlib Perl ...↗2009

▶

Debian

CVE-2009-1884: libcompress-raw-bzip2-perl - Off-by-one error in the bzinflate function in Bzip2.xs in the Compress-Raw-Bzip2...↗2009

▶

💬Community

Bugzilla

CVE-2009-4881 glibc (32-bit): Integer overflow in the __vstrfmon_l function↗2010-06-02

▶

Bugzilla

CVE-2009-4880 glibc (32-bit): Multiple integer overflows in the printf implementation↗2010-06-02

▶

Bugzilla

CVE-2009-3637 alienarena: Buffer overflow by processing specially-crafted UDP reply from game server (ACE)↗2009-10-23

▶

Bugzilla

CVE-2009-1884 perl-Compress-Raw-Bzip2: Off-by-one error in the bzinflate function - DoS (crash)↗2009-08-19

▶

Bugzilla

CVE-2009-1391 Buffer overflow in Compress::Raw::Zlib↗2009-06-05

▶