CVE-2005-2491

Name of the Vulnerable Software and Affected Versions PCRE versions prior to 6.2 Apache HTTP Server (affected versions not specified)

Description The issue is related to an integer overflow in the pcre compile.c file of the Perl Compatible Regular Expressions (PCRE) library, which can be exploited to execute arbitrary code via quantifier values in regular expressions. This leads to a heap-based buffer overflow. The PCRE library is used in multiple products, including Python, Ethereal, and PHP.

Recommendations For PCRE versions prior to 6.2, update to version 6.2 or later to resolve the issue. For Apache HTTP Server, at the moment, there is no information about a newer version that contains a fix for this vulnerability.