PT-2007-1500 · Pcre+1 · Pcre Library+1

Ludwig Nussel

·

Publicado

2007-11-29

·

Atualizado

2017-10-11

·

CVE-2006-7225

CVSS v2.0

4.3

Média

VetorAV:N/AC:M/Au:N/C:N/I:N/A:P
Name of the Vulnerable Software and Affected Versions PCRE library versions prior to 6.7
Description The issue allows context-dependent attackers to cause a denial of service, resulting in an error or crash, by utilizing a regular expression that involves a malformed POSIX character class. This can be demonstrated via an invalid character after a [[ sequence.
Recommendations For versions prior to 6.7, update to version 6.7 or later to resolve the issue.

Correção

DoS

RCE

Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾
dbugs@ptsecurity.com

Enumeração de Fraquezas

CWE-20

Identificadores relacionados

CVE-2006-7225
RHSA-2007:1059
RHSA-2007:1068
RHSA-2007_1059
RHSA-2007_1068

Produtos afetados

Pcre Library
Red Hat