CVE-2005-2491
CVE-2005-2491
Integer overflow in pcre_compile.c in Perl Compatible Regular Expressions (PCRE) before 6.2, as used in multiple products such as Python, Ethereal, and PHP, allows attackers to execute arbitrary code via quantifier values in regular expressions, which leads to a heap-based buffer overflow.
Affected products
n/a · n/aWant to know if your infrastructure is exposed to this?
Talk to TrueHacking →References
ftp://ftp.sco.com/pub/updates/OpenServer/SCOSA-2006.10/SCOSA-2006.10.txtftp://patches.sgi.com/support/free/security/advisories/20060401-01-Uhttp://docs.info.apple.com/article.html?artnum=302847http://itrc.hp.com/service/cki/docDisplay.do?docId=c00786522http://lists.trustix.org/pipermail/tsl-announce/2005-October/000354.htmlhttp://marc.info/?l=bugtraq&m=112605112027335&w=2http://marc.info/?l=bugtraq&m=112606064317223&w=2http://marc.info/?l=bugtraq&m=130497311408250&w=2http://secunia.com/advisories/16502http://secunia.com/advisories/16679http://secunia.com/advisories/17252http://secunia.com/advisories/17813