Detections
Analytics

ActivePerl perlIS.dll Remote Buffer Overflow

critical Nessus Plugin ID 10811

Synopsis

It may be possible to execute arbitrary code on the remote system.

Description

An attacker can run arbitrary code on the remote computer.
This is because the remote IIS server is running a version of ActivePerl prior to 5.6.1.630 and has the Check that file exists option disabled for the perlIS.dll.

Solution

Either upgrade to a version of ActivePerl more recent than 5.6.1.629 or enable the Check that file exists option.
To enable this option, open up the IIS MMC, right click on a (virtual) directory in your web server, choose Properties, click on the Configuration... button, highlight the .plx item, click Edit, and then check Check that file exists.

More Information: http://www.securityfocus.com/bid/3526

See Also

http://www.securityfocus.com/advisories/3659

Plugin Details

Severity: Critical

ID: 10811

File Name: perlIS_dll_bufferoverflow.nasl

Version: 1.27

Type: remote

Family: CGI abuses

Published: 11/26/2001

Updated: 1/19/2021

Supported Sensors: Nessus

Risk Information

VPR

Risk Factor: Medium

Score: 6.6

CVSS v2

Risk Factor: Critical

Base Score: 10

Temporal Score: 7.8

Vector: CVSS2#AV:N/AC:L/Au:N/C:C/I:C/A:C

Vulnerability Information

Exploit Ease: No exploit is required

Vulnerability Publication Date: 11/15/2001

Reference Information

CVE: CVE-2001-0815

BID: 3526