Lucene search
K

13 matches found

SUSE CVE
SUSE CVE
added 2023/02/15 5:20 a.m.3 views

SUSE CVE-2015-2305

Integer overflow in the regcomp implementation in the Henry Spencer BSD regex library aka rxspencer alpha3.8.g5 on 32-bit platforms, as used in NetBSD through 6.1.5 and other products, might allow context-dependent attackers to execute arbitrary code via a large regular expression that leads to a...

6.8CVSS8.3AI score0.0837EPSS
Exploits1References19
Amazon
Amazon
added 2015/05/14 12:0 a.m.45 views

Medium: php

Issue Overview: Integer overflow in the regcomp implementation in the Henry Spencer BSD regex library aka rxspencer alpha3.8.g5 on 32-bit platforms, as used in NetBSD through 6.1.5 and other products, might allow context-dependent attackers to execute arbitrary code via a large regular expression...

6.8CVSS8.5AI score0.0837EPSS
Exploits1
CNVD
CNVD
added 2015/04/03 12:0 a.m.2 views

Henry Spencer BSD regex library alpha3.8.g5 on-bit platforms integer overflow vulnerability

Henry Spencer BSD regex library is Canadian software developer Henry Spencer developed a set of regular expression software library written in C language. The Henry Spencer BSD regex library alpha3.8.g5 on 32-bit platforms is vulnerable to an integer overflow vulnerability where an attacker can...

6.8CVSS8AI score0.0837EPSS
Exploits1References1
NVD
NVD
added 2015/03/30 10:59 a.m.26 views

CVE-2015-2305

Integer overflow in the regcomp implementation in the Henry Spencer BSD regex library aka rxspencer alpha3.8.g5 on 32-bit platforms, as used in NetBSD through 6.1.5 and other products, might allow context-dependent attackers to execute arbitrary code via a large regular expression that leads to a...

6.8CVSS8.3AI score0.0837EPSS
Exploits1References21
OSV
OSV
added 2015/03/30 10:59 a.m.3 views

DEBIAN-CVE-2015-2305

Integer overflow in the regcomp implementation in the Henry Spencer BSD regex library aka rxspencer alpha3.8.g5 on 32-bit platforms, as used in NetBSD through 6.1.5 and other products, might allow context-dependent attackers to execute arbitrary code via a large regular expression that leads to a...

6.8CVSS8AI score0.0837EPSS
Exploits1References1
Prion
Prion
added 2015/03/30 10:59 a.m.29 views

Integer overflow

Integer overflow in the regcomp implementation in the Henry Spencer BSD regex library aka rxspencer alpha3.8.g5 on 32-bit platforms, as used in NetBSD through 6.1.5 and other products, might allow context-dependent attackers to execute arbitrary code via a large regular expression that leads to a...

6.8CVSS8.3AI score0.0837EPSS
Exploits1References21Affected Software5
Debian CVE
Debian CVE
added 2015/03/30 10:0 a.m.46 views

CVE-2015-2305

Integer overflow in the regcomp implementation in the Henry Spencer BSD regex library aka rxspencer alpha3.8.g5 on 32-bit platforms, as used in NetBSD through 6.1.5 and other products, might allow context-dependent attackers to execute arbitrary code via a large regular expression that leads to a...

6.8CVSS8.5AI score0.0837EPSS
Exploits1
Cvelist
Cvelist
added 2015/03/30 10:0 a.m.28 views

CVE-2015-2305

Integer overflow in the regcomp implementation in the Henry Spencer BSD regex library aka rxspencer alpha3.8.g5 on 32-bit platforms, as used in NetBSD through 6.1.5 and other products, might allow context-dependent attackers to execute arbitrary code via a large regular expression that leads to a...

9.8AI score0.0837EPSS
Exploits1References21
CVE
CVE
added 2015/03/30 10:0 a.m.239 views

CVE-2015-2305

CVE-2015-2305 describes an integer/heap overflow in the Henry Spencer BSD regex library (rxspencer), specifically in regcomp on 32-bit platforms. The issue can be triggered by a very large regular expression, potentially allowing context-dependent attackers to execute arbitrary code via a heap-ba...

6.8CVSS8.1AI score0.0837EPSS
Exploits1References21Affected Software1
OSV
OSV
added 2015/03/30 12:0 a.m.4 views

UBUNTU-CVE-2015-2305

Integer overflow in the regcomp implementation in the Henry Spencer BSD regex library aka rxspencer alpha3.8.g5 on 32-bit platforms, as used in NetBSD through 6.1.5 and other products, might allow context-dependent attackers to execute arbitrary code via a large regular expression that leads to a...

6.8CVSS7.5AI score0.0837EPSS
Exploits1References6
Tenable Nessus
Tenable Nessus
added 2015/03/24 12:0 a.m.66 views

PHP 5.5.x < 5.5.23 Multiple Vulnerabilities

According to its banner, the version of PHP 5.5.x installed on the remote host is prior to 5.5.23. It is, therefore, affected by multiple vulnerabilities : - A use-after-free error exists related to function 'unserialize', which can allow a remote attacker to execute arbitrary code. Note that thi...

7.5CVSS7.8AI score0.42593EPSS
Exploits16References10
CNVD
CNVD
added 2015/03/05 12:0 a.m.2 views

Henry Spencer Regex Library 'regcomp.c' Heap-Based Buffer Overflow Vulnerability

Henry Spencer Regex Library is a set of Canadian software developer Henry Spencer developed a set of regular expression software library written in C language. A buffer overflow vulnerability exists in Henry Spencer Regex Library. An attacker could use this vulnerability to perform unauthorized...

7.3AI score
Exploits0References1
CERT
CERT
added 2015/02/13 12:0 a.m.22 views

Henry Spencer regular expressions (regex) library contains a heap overflow vulnerability

Overview A regular expressions C library originally written by Henry Spencer is vulnerable to a heap overflow in some circumstances. Description CWE-122: Heap-based Buffer Overflow From the researcher, the variable len that holds the length of a regular expression string is "enlarged to such an...

7.8AI score
Exploits0References2
Rows per page
Query Builder