4085 matches found
Reachable Assertion
Overview Affected versions of this package are vulnerable to Reachable Assertion via perlmatchernonrecursive.hpp when processing regular expressions. A remote attacker could provide specially crafted regular expressions to an application using Boost, resulting in a denial of service. Remediation...
postgresql integer overflow in regex code
The regular expression parser in TCL before 8.4.17, as used in PostgreSQL 8.2 before 8.2.6, 8.1 before 8.1.11, 8.0 before 8.0.15, and 7.4 before 7.4.19, allows remote authenticated users to cause a denial of service backend crash via an out-of-bounds backref number...
postgresql DoS via infinite loop in regex NFA optimization code
The regular expression parser in TCL before 8.4.17, as used in PostgreSQL 8.2 before 8.2.6, 8.1 before 8.1.11, 8.0 before 8.0.15, and 7.4 before 7.4.19, allows context-dependent attackers to cause a denial of service infinite loop via a crafted regular expression...
CVE-2007-6067
Algorithmic complexity vulnerability in the regular expression parser in TCL before 8.4.17, as used in PostgreSQL 8.2 before 8.2.6, 8.1 before 8.1.11, 8.0 before 8.0.15, and 7.4 before 7.4.19, allows remote authenticated users to cause a denial of service memory consumption via a crafted "complex...
PT-2008-1457 · Postgresql +3 · Postgresql +3
Name of the Vulnerable Software and Affected Versions: PostgreSQL versions 7.4 through 7.4.18 PostgreSQL versions 8.0 through 8.0.14 PostgreSQL versions 8.1 through 8.1.10 PostgreSQL versions 8.2 through 8.2.5 TCL versions prior to 8.4.17 Description: The issue is related to the regular expressio...
PT-2008-1536 · Postgresql +3 · Postgresql +3
Name of the Vulnerable Software and Affected Versions: PostgreSQL versions prior to 8.2.6 PostgreSQL versions prior to 8.1.11 PostgreSQL versions prior to 8.0.15 PostgreSQL versions prior to 7.4.19 TCL versions prior to 8.4.17 Description: The issue allows remote authenticated users to cause a...
: pcre before 7.3 incorrect unicode in char class optimization
Heap-based buffer overflow in Perl-Compatible Regular Expression PCRE library before 7.3 allows context-dependent attackers to execute arbitrary code via a singleton Unicode sequence in a character class in a regex pattern, which is incorrectly optimized...
Break ray client figure ASP webmaster Safety assistant-vulnerability warning-the black bar safety net
To Lake2 website and 1. 5 the source code, found this version indeed improved a lot, and increase the killing function: 1:killing by the Unicode encoding of the ASP Trojan 2:killing the useOpen|CreateTextFile, And SaveToFile, Save, set Server, Server. Transfer|Execute, the ShellExecute, Exec, the...
SuSE 10 Security Update : perl (ZYPP Patch Number 4665)
This update fixes a buffer overflow in perl's regex engine. CVE-2007-5116 %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The text description of this plugin is C Novell, Inc. include'deprecatednasllevel.inc'; include'compat.inc'; if description scriptid29550; scriptversion"1.17";...
pcre integer overflow
Integer overflow in Perl-Compatible Regular Expression PCRE library before 6.7 might allow context-dependent attackers to execute arbitrary code via a regular expression that involves large 1 min, 2 max, or 3 duplength values that cause an incorrect length calculation and trigger a buffer overflo...
Fedora Core 6 : perl-5.8.8-12 (2007-748)
This update resolves CVE-2007-5116, fixing a security issue with perl's regex parser. Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean and format it as much as possible without...
DEBIAN-CVE-2006-7225
Perl-Compatible Regular Expression PCRE library before 6.7 allows context-dependent attackers to cause a denial of service error or crash via a regular expression that involves a "malformed POSIX character class", as demonstrated via an invalid character after a sequence...
pcre integer overflow
Integer overflow in Perl-Compatible Regular Expression PCRE library before 6.7 might allow context-dependent attackers to execute arbitrary code via a regular expression that involves large 1 min, 2 max, or 3 duplength values that cause an incorrect length calculation and trigger a buffer overflo...
pcre integer overflow
Integer overflow in Perl-Compatible Regular Expression PCRE library before 6.7 might allow context-dependent attackers to execute arbitrary code via a regular expression that involves large 1 min, 2 max, or 3 duplength values that cause an incorrect length calculation and trigger a buffer overflo...
pcre regular expression flaws
Perl-Compatible Regular Expression PCRE library before 7.0 does not properly calculate sizes for unspecified "multiple forms of character class", which triggers a buffer overflow that allows context-dependent attackers to cause a denial of service crash and possibly execute arbitrary code...
pcre integer overflow
Integer overflow in Perl-Compatible Regular Expression PCRE library before 6.7 might allow context-dependent attackers to execute arbitrary code via a regular expression that involves large 1 min, 2 max, or 3 duplength values that cause an incorrect length calculation and trigger a buffer overflo...
openSUSE 10 Security Update : perl (perl-4675)
This update fixes a buffer overflow in perl's regex engine. CVE-2007-5116 %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from openSUSE Security Update perl-4675. The text description of this plugin is C SUSE LLC...
DEBIAN-CVE-2006-7230
Perl-Compatible Regular Expression PCRE library before 7.0 does not properly calculate the amount of memory needed for a compiled regular expression pattern when the 1 -x or 2 -i UTF-8 options change within the pattern, which allows context-dependent attackers to cause a denial of service PCRE or...
pcre integer overflow
Integer overflow in Perl-Compatible Regular Expression PCRE library before 6.7 allows context-dependent attackers to execute arbitrary code via a regular expression containing a large number of named subpatterns namecount or long subpattern names maxnamesize, which triggers a buffer overflow. NOT...
CVE-2007-1659
Perl-Compatible Regular Expression PCRE library before 7.3 allows context-dependent attackers to cause a denial of service crash and possibly execute arbitrary code via regex patterns containing unmatched "\Q\E" sequences with orphan "\E" codes...