Lucene search
K

6683 matches found

Debian CVE
Debian CVE
added 2007/11/07 8:0 p.m.35 views

CVE-2007-1659

Perl-Compatible Regular Expression PCRE library before 7.3 allows context-dependent attackers to cause a denial of service crash and possibly execute arbitrary code via regex patterns containing unmatched "\Q\E" sequences with orphan "\E" codes...

6.8CVSS7.3AI score0.0353EPSS
Exploits0
CVE
CVE
added 2007/11/07 8:0 p.m.87 views

CVE-2007-4768

CVE-2007-4768 describes a heap-based buffer overflow in the PCRE library (before 7.3) that can be triggered by a singleton Unicode sequence in a character class in a regex pattern, enabling context-dependent attackers to execute arbitrary code. Connected advisories (e.g., RHSA-2007-1126, Ubuntu U...

6.8CVSS9.8AI score0.04097EPSS
Exploits0References60Affected Software1
CVE
CVE
added 2007/11/07 8:0 p.m.65 views

CVE-2007-1661

CVE-2007-1661 affects the Perl-Compatible Regular Expression (PCRE) library prior to 7.3, where backtracking can occur when matching certain input bytes against some patterns in non‑UTF‑8 mode, potentially exposing sensitive information or causing a denial of service (crash). The description expl...

6.4CVSS9.2AI score0.02492EPSS
Exploits0References44Affected Software1
Tenable Nessus
Tenable Nessus
added 2007/11/06 12:0 a.m.31 views

RHEL 3 / 4 / 5 : perl (RHSA-2007:0966)

Updated Perl packages that fix a security issue are now available for Red Hat Enterprise Linux 3, 4, and 5. This update has been rated as having important security impact by the Red Hat Security Response Team. Perl is a high-level programming language commonly used for system administration...

7.5CVSS8.1AI score0.0483EPSS
Exploits1References3
Tenable Nessus
Tenable Nessus
added 2007/11/06 12:0 a.m.29 views

RHEL 4 : pcre (RHSA-2007:0968)

The remote Redhat Enterprise Linux 4 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2007:0968 advisory. PCRE is a Perl-compatible regular expression library. Multiple flaws were found in the way pcre handles certain malformed regular expressions. If an...

6.8CVSS5.7AI score0.04077EPSS
Exploits0References5
Tenable Nessus
Tenable Nessus
added 2007/11/06 12:0 a.m.22 views

Mandrake Linux Security Advisory : perl (MDKSA-2007:207)

Tavis Ormandy and Will Drewry discovered a flaw in Perl's regular expression engine. Specially crafted input to a regular expression can cause Perl to improperly allocate memory, resulting in the possible execution of arbitrary code with the permissions of the user running Perl. Updated packages...

7.5CVSS8.5AI score0.0483EPSS
Exploits1References1
Cent OS
Cent OS
added 2007/11/05 6:41 p.m.72 views

pcre security update

CentOS Errata and Security Advisory CESA-2007:0968 Updated pcre packages that correct two security flaws are now available for Red Hat Enterprise Linux 4. This update has been rated as having critical security impact by the Red Hat Security Response Team. PCRE is a Perl-compatible regular...

6.8CVSS5.7AI score0.04077EPSS
Exploits0References8
Cent OS
Cent OS
added 2007/11/05 5:35 p.m.64 views

perl security update

CentOS Errata and Security Advisory CESA-2007:0966 Updated Perl packages that fix a security issue are now available for Red Hat Enterprise Linux 3, 4, and 5. This update has been rated as having important security impact by the Red Hat Security Response Team. Perl is a high-level programming...

7.5CVSS7.4AI score0.0483EPSS
Exploits1References9
RedHat Linux
RedHat Linux
added 2007/11/05 4:27 p.m.4 views

perl regular expression UTF parsing errors

Buffer overflow in the polymorphic opcode support in the Regular Expression Engine regcomp.c in Perl 5.8 allows context-dependent attackers to execute arbitrary code by switching from byte to Unicode UTF characters in a regular expression...

7.5CVSS7.8AI score0.0483EPSS
Exploits1References4
RedHat Linux
RedHat Linux
added 2007/11/05 4:27 p.m.30 views

Important: Red Hat Security Advisory: perl security update

Updated Perl packages that fix security issues for Red Hat Application Stack v1.2 are now available. This update has been rated as having important security impact by the Red Hat Security Response Team. Perl is a high-level programming language commonly used for system administration utilities an...

7.5CVSS7.4AI score0.0483EPSS
Exploits1References2
RedHat Linux
RedHat Linux
added 2007/11/05 4:23 p.m.29 views

Important: Red Hat Security Advisory: perl security update

Updated Perl packages that fix a security issue are now available for Red Hat Enterprise Linux 3, 4, and 5. This update has been rated as having important security impact by the Red Hat Security Response Team. Perl is a high-level programming language commonly used for system administration...

7.5CVSS7.3AI score0.0483EPSS
Exploits1References2
RedHat Linux
RedHat Linux
added 2007/11/05 4:11 p.m.60 views

Critical: Red Hat Security Advisory: pcre security update

Updated pcre packages that correct two security flaws are now available for Red Hat Enterprise Linux 4. This update has been rated as having critical security impact by the Red Hat Security Response Team. PCRE is a Perl-compatible regular expression library. Multiple flaws were found in the way...

6.8CVSS5.7AI score0.04077EPSS
Exploits0References2
RedHat Linux
RedHat Linux
added 2007/11/05 4:11 p.m.4 views

pcre regular expression flaws

Perl-Compatible Regular Expression PCRE library before 7.0 does not properly calculate sizes for unspecified "multiple forms of character class", which triggers a buffer overflow that allows context-dependent attackers to cause a denial of service crash and possibly execute arbitrary code...

6.8CVSS6.3AI score0.04077EPSS
Exploits0References4
RedHat Linux
RedHat Linux
added 2007/11/05 4:7 p.m.45 views

Critical: Red Hat Security Advisory: pcre security update

Updated pcre packages that correct two security flaws are now available for Red Hat Enterprise Linux 5. This update has been rated as having critical security impact by the Red Hat Security Response Team. PCRE is a Perl-compatible regular expression library. Multiple flaws were found in the way...

6.8CVSS5.7AI score0.04077EPSS
Exploits0References3
Oracle linux
Oracle linux
added 2007/11/05 12:0 a.m.54 views

Important: perl security update

5.8.5-36.el45.2.0.1 - Added patch perl-5.8.5-OEL-mock-build.patch to disable test lib/Net/t/hostname.t, so that mock build succeeds 5.8.5-36.el4.2 - Resolves: bug323791 - fix previous patch 5.8.5-36.el4.1 - Resolves: bug323791 - fix regular expression UTF parsing errors...

7.5CVSS2.3AI score0.0483EPSS
Exploits1
FreeBSD
FreeBSD
added 2007/11/05 12:0 a.m.35 views

perl -- regular expressions unicode data buffer overflow

Red Hat reports: A flaw was found in Perl's regular expression engine. Specially crafted input to a regular expression can cause Perl to improperly allocate memory, possibly resulting in arbitrary code running with the permissions of the user running Perl...

7.5CVSS9.3AI score0.0483EPSS
Exploits1References1
Prion
Prion
added 2007/07/02 7:30 p.m.10 views

Directory traversal

Directory traversal vulnerability in session.rb in Hiki 0.8.0 through 0.8.6 allows remote attackers to delete arbitrary files via directory traversal sequences in the session ID, which is matched against an insufficiently restrictive regular expression before it is used to construct a filename th...

6.4CVSS6.9AI score0.02386EPSS
Exploits0References11Affected Software1
UbuntuCve
UbuntuCve
added 2007/07/02 7:30 p.m.17 views

CVE-2007-2836

Directory traversal vulnerability in session.rb in Hiki 0.8.0 through 0.8.6 allows remote attackers to delete arbitrary files via directory traversal sequences in the session ID, which is matched against an insufficiently restrictive regular expression before it is used to construct a filename th...

6.4CVSS6.1AI score0.02386EPSS
Exploits0References1
Cvelist
Cvelist
added 2007/07/02 7:0 p.m.16 views

CVE-2007-2836

Directory traversal vulnerability in session.rb in Hiki 0.8.0 through 0.8.6 allows remote attackers to delete arbitrary files via directory traversal sequences in the session ID, which is matched against an insufficiently restrictive regular expression before it is used to construct a filename th...

6.5AI score0.02386EPSS
Exploits0References11
RedHat Linux
RedHat Linux
added 2007/06/20 2:49 p.m.5 views

mod_perl PerlRun denial of service

PerlRun.pm in Apache modperl before 1.30, and RegistryCooker.pm in modperl 2.x, does not properly escape PATHINFO before use in a regular expression, which allows remote attackers to cause a denial of service resource consumption via a crafted URI...

5CVSS7.4AI score0.10111EPSS
Exploits0References4
Rows per page
Query Builder