CVE-2015-5073

Heap-based buffer overflow in the find_fixedlength function in pcre_compile.c in PCRE before 8.38 allows remote attackers to cause a denial of service (crash) or obtain sensitive information from heap memory and possibly bypass the ASLR protection mechanism via a crafted regular expression with an excess closing parenthesis.
Advertisement

NeevaHost hosting service

Configurations

Configuration 1 (hide)

OR cpe:2.3:a:ibm:powerkvm:2.1:*:*:*:*:*:*:*
cpe:2.3:a:ibm:powerkvm:3.1:*:*:*:*:*:*:*

Configuration 2 (hide)

cpe:2.3:a:pcre:pcre:*:*:*:*:*:*:*:*

Information

Published : 2016-12-13 08:59

Updated : 2018-05-17 18:29


NVD link : CVE-2015-5073

Mitre link : CVE-2015-5073


JSON object : View

CWE
CWE-200

Exposure of Sensitive Information to an Unauthorized Actor

CWE-119

Improper Restriction of Operations within the Bounds of a Memory Buffer

Advertisement

dedicated server usa

Products Affected

ibm

  • powerkvm

pcre

  • pcre