Lucene search
K

1038 matches found

Prion
Prion
added 2014/07/06 11:55 p.m.19 views

Design/Logic Flaw

Email::Address module before 1.904 for Perl uses an inefficient regular expression, which allows remote attackers to cause a denial of service CPU consumption via vectors related to "backtracking into the phrase," a different vulnerability than CVE-2014-0477...

5CVSS7AI score0.03584EPSS
Exploits2References2
Debian CVE
Debian CVE
added 2014/07/06 11:0 p.m.36 views

CVE-2014-4720

Email::Address module before 1.904 for Perl uses an inefficient regular expression, which allows remote attackers to cause a denial of service CPU consumption via vectors related to "backtracking into the phrase," a different vulnerability than CVE-2014-0477...

5CVSS7.3AI score0.01864EPSS
Exploits1
NVD
NVD
added 2014/07/03 2:55 p.m.30 views

CVE-2014-3538

file before 5.19 does not properly restrict the amount of data read during a regex search, which allows remote attackers to cause a denial of service CPU consumption via a crafted file that triggers backtracking during processing of an awk rule. NOTE: this vulnerability exists because of an...

5CVSS7.1AI score0.11814EPSS
Exploits1References22
OSV
OSV
added 2014/07/03 2:55 p.m.3 views

DEBIAN-CVE-2014-3538

file before 5.19 does not properly restrict the amount of data read during a regex search, which allows remote attackers to cause a denial of service CPU consumption via a crafted file that triggers backtracking during processing of an awk rule. NOTE: this vulnerability exists because of an...

5CVSS6.8AI score0.11814EPSS
Exploits1References1
Prion
Prion
added 2014/07/03 2:55 p.m.35 views

Design/Logic Flaw

file before 5.19 does not properly restrict the amount of data read during a regex search, which allows remote attackers to cause a denial of service CPU consumption via a crafted file that triggers backtracking during processing of an awk rule. NOTE: this vulnerability exists because of an...

5CVSS6.8AI score0.11814EPSS
Exploits2References22Affected Software3
CVE
CVE
added 2014/07/03 2:0 p.m.260 views

CVE-2014-3538

CVE-2014-3538 affects the file utility: multiple flaws found in the file regular expression rules used to detect file types can cause denial of service via CPU exhaustion when processing crafted inputs; this issue is tied to an incomplete previous fix (CVE-2013-7345). Affected data shows updated ...

5CVSS9.1AI score0.11814EPSS
Exploits1References22Affected Software1
Debian CVE
Debian CVE
added 2014/07/03 2:0 p.m.37 views

CVE-2014-3538

file before 5.19 does not properly restrict the amount of data read during a regex search, which allows remote attackers to cause a denial of service CPU consumption via a crafted file that triggers backtracking during processing of an awk rule. NOTE: this vulnerability exists because of an...

5CVSS8.6AI score0.11814EPSS
Exploits1
OSV
OSV
added 2014/07/03 12:0 a.m.7 views

UBUNTU-CVE-2014-3538

file before 5.19 does not properly restrict the amount of data read during a regex search, which allows remote attackers to cause a denial of service CPU consumption via a crafted file that triggers backtracking during processing of an awk rule. NOTE: this vulnerability exists because of an...

5CVSS7.2AI score0.11814EPSS
Exploits1References6
Tenable Nessus
Tenable Nessus
added 2014/06/13 12:0 a.m.30 views

openSUSE Security Update : file (openSUSE-SU-2014:0481-1)

file was updated to fix extensive backtracking in awk rule regular expression which could lead to a CPU consumption denial of service. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from openSUSE Security Update...

5CVSS8AI score0.0304EPSS
Exploits1References3
Amazon
Amazon
added 2014/05/21 12:0 a.m.45 views

Medium: php55

Issue Overview: The BEGIN regular expression in the awk script detector in magic/Magdir/commands in file before 5.15 uses multiple wildcards with unlimited repetitions, which allows context-dependent attackers to cause a denial of service CPU consumption via a crafted ASCII file that triggers a...

5CVSS8.5AI score0.0304EPSS
Exploits1
Mageia
Mageia
added 2014/03/31 7:34 p.m.58 views

Updated file packages fix security vulnerabilities

The BEGIN regular expression in the awk script detector in magic/Magdir/commands in file before 5.15 uses multiple wildcards with unlimited repetitions, which allows context-dependent attackers to cause a denial of service CPU consumption via a crafted ASCII file that triggers a large amount of...

5CVSS4.9AI score0.0304EPSS
Exploits1References2
OSV
OSV
added 2014/03/24 4:31 p.m.2 views

DEBIAN-CVE-2013-7345

The BEGIN regular expression in the awk script detector in magic/Magdir/commands in file before 5.15 uses multiple wildcards with unlimited repetitions, which allows context-dependent attackers to cause a denial of service CPU consumption via a crafted ASCII file that triggers a large amount of...

5CVSS6.7AI score0.0304EPSS
Exploits1References1
OSV
OSV
added 2014/03/24 4:31 p.m.7 views

CVE-2013-7345

The BEGIN regular expression in the awk script detector in magic/Magdir/commands in file before 5.15 uses multiple wildcards with unlimited repetitions, which allows context-dependent attackers to cause a denial of service CPU consumption via a crafted ASCII file that triggers a large amount of...

6AI score
Exploits0References13
Prion
Prion
added 2014/03/24 4:31 p.m.23 views

Design/Logic Flaw

The BEGIN regular expression in the awk script detector in magic/Magdir/commands in file before 5.15 uses multiple wildcards with unlimited repetitions, which allows context-dependent attackers to cause a denial of service CPU consumption via a crafted ASCII file that triggers a large amount of...

5CVSS6.4AI score0.0304EPSS
Exploits1References6Affected Software3
OSV
OSV
added 2014/03/24 12:0 a.m.2 views

UBUNTU-CVE-2013-7345

The BEGIN regular expression in the awk script detector in magic/Magdir/commands in file before 5.15 uses multiple wildcards with unlimited repetitions, which allows context-dependent attackers to cause a denial of service CPU consumption via a crafted ASCII file that triggers a large amount of...

5CVSS7.2AI score0.0304EPSS
Exploits1References6
UbuntuCve
UbuntuCve
added 2014/03/24 12:0 a.m.41 views

CVE-2013-7345

The BEGIN regular expression in the awk script detector in magic/Magdir/commands in file before 5.15 uses multiple wildcards with unlimited repetitions, which allows context-dependent attackers to cause a denial of service CPU consumption via a crafted ASCII file that triggers a large amount of...

5CVSS7.1AI score0.0304EPSS
Exploits1References5
Cvelist
Cvelist
added 2014/03/23 3:0 p.m.33 views

CVE-2013-7345

The BEGIN regular expression in the awk script detector in magic/Magdir/commands in file before 5.15 uses multiple wildcards with unlimited repetitions, which allows context-dependent attackers to cause a denial of service CPU consumption via a crafted ASCII file that triggers a large amount of...

8.9AI score0.0304EPSS
Exploits1References6
Debian CVE
Debian CVE
added 2014/03/23 3:0 p.m.34 views

CVE-2013-7345

The BEGIN regular expression in the awk script detector in magic/Magdir/commands in file before 5.15 uses multiple wildcards with unlimited repetitions, which allows context-dependent attackers to cause a denial of service CPU consumption via a crafted ASCII file that triggers a large amount of...

5CVSS8.3AI score0.0304EPSS
Exploits1
OSV
OSV
added 2013/10/17 11:55 p.m.3 views

DEBIAN-CVE-2013-4363

Algorithmic complexity vulnerability in Gem::Version::ANCHOREDVERSIONPATTERN in lib/rubygems/version.rb in RubyGems before 1.8.23.2, 1.8.24 through 1.8.26, 2.0.x before 2.0.10, and 2.1.x before 2.1.5, as used in Ruby 1.9.0 through 2.0.0p247, allows remote attackers to cause a denial of service CP...

4.3CVSS6.6AI score0.0169EPSS
Exploits0References1
OSV
OSV
added 2013/10/17 11:55 p.m.2 views

DEBIAN-CVE-2013-4287

Algorithmic complexity vulnerability in Gem::Version::VERSIONPATTERN in lib/rubygems/version.rb in RubyGems before 1.8.23.1, 1.8.24 through 1.8.25, 2.0.x before 2.0.8, and 2.1.x before 2.1.0, as used in Ruby 1.9.0 through 2.0.0p247, allows remote attackers to cause a denial of service CPU...

4.3CVSS7.7AI score0.03343EPSS
Exploits0References1
Rows per page
Query Builder