Lucene search
Ubuntu.comUB:CVE-2007-1661HistoryNov 07, 2007 - 12:00 a.m.
CVE-2007-1661
2007-11-0700:00:00
ubuntu.com
ubuntu.com
12
6.4 Medium
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
NONE
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:N/A:P
0.028 Low
EPSS
Percentile
90.7%
Perl-Compatible Regular Expression (PCRE) library before 7.3 backtracks too
far when matching certain input bytes against some regex patterns in
non-UTF-8 mode, which allows context-dependent attackers to obtain
sensitive information or cause a denial of service (crash), as demonstrated
by the “\X?\d” and “\P{L}?\d” patterns.
Related
cvelist
cvelist
CVE-2007-1661
2007-11-07 20:00:00
nvd
nvd
CVE-2007-1661
2007-11-07 23:46:00
debiancve
debiancve
CVE-2007-1661
2007-11-07 23:46:00
cve
cve
CVE-2007-1661
2007-11-07 23:46:00
prion
prion
Code injection
2007-11-07 23:46:00
nessus
nessus
openSUSE 10 Security Update : pcre (pcre-4683)
2007-11-20 00:00:00
Ubuntu 6.06 LTS / 6.10 / 7.04 / 7.10 : pcre3 vulnerabilities (USN-547-1)
2007-11-29 00:00:00
Fedora 7 : pcre-7.3-3.fc7 (2008-1842)
2008-03-07 00:00:00
openvas
openvas
Mandriva Update for pcre MDKSA-2007:211 (pcre)
2009-04-09 00:00:00
Fedora Update for pcre FEDORA-2008-1842
2009-02-16 00:00:00
Ubuntu Update for pcre3 vulnerabilities USN-547-1
2009-03-23 00:00:00
osv
osv
pcre3 - arbitrary code execution
2007-11-05 00:00:00
freebsd
freebsd
pcre -- arbitrary code execution
2007-11-05 00:00:00
securityvulns
securityvulns
[SECURITY] [DSA 1399-1] New pcre3 packages fix arbitrary code execution
2007-11-07 00:00:00
PCRE and perl regular expression handling multiple security vulnerabilities
2007-11-07 00:00:00
ubuntu
ubuntu
PCRE vulnerabilities
2007-11-27 00:00:00
fedora
fedora
[SECURITY] Fedora 7 Update: pcre-7.3-3.fc7
2008-03-06 16:37:25
debian
debian
[SECURITY] [DSA 1399-1] New pcre3 packages fix arbitrary code execution
2007-11-05 20:22:19
suse
suse
remote code execution in pcre
2007-11-23 15:35:33
gentoo
gentoo
PCRE: Multiple vulnerabilities
2007-11-20 00:00:00
6.4 Medium
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
NONE
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:N/A:P
0.028 Low
EPSS
Percentile
90.7%
Related for UB:CVE-2007-1661