Perl-Compatible Regular Expression (PCRE) library before 6.7 allows context-dependent attackers to cause a denial of service (error or crash) via a regular expression that involves a "malformed POSIX character class", as demonstrated via an invalid character after a [[ sequence.
References
Configurations
Configuration 1 (hide)
|
Information
Published : 2007-12-03 12:46
Updated : 2017-10-10 18:31
NVD link : CVE-2006-7225
Mitre link : CVE-2006-7225
JSON object : View
CWE
CWE-20
Improper Input Validation
Products Affected
perl
- pcre