CVE-2007-4771

Name of the Vulnerable Software and Affected Versions International Components for Unicode (ICU) versions 3.8.1 and earlier

Description The issue is related to a heap-based buffer overflow in the doInterval function in regexcmp.cpp in libicu. This allows context-dependent attackers to cause a denial of service and possibly have other impacts via a regular expression that writes a large amount of data to the backtracking stack. The vulnerability can also be exploited by a remote attacker to access confidential data, compromise its integrity, and cause a denial of service.

Recommendations For International Components for Unicode (ICU) versions 3.8.1 and earlier, at the moment, there is no information about a newer version that contains a fix for this vulnerability.