Description

Heap-based buffer overflow in pcre_compile.c in the Perl-Compatible Regular Expression (PCRE) library 7.7 allows context-dependent attackers to cause a denial of service (crash) or possibly execute arbitrary code via a regular expression that begins with an option and contains multiple branches.

Remediation

References

CVE-2008-2371

Related Vulnerabilities

Oracle Database Server CVE-2008-2611 Vulnerability (CVE-2008-2611)

WebLogic CVE-2020-14644 Vulnerability (CVE-2020-14644)

WordPress Plugin A2 Optimized WP Information Disclosure (2.0.10.8)

Drupal Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2009-1047)

Oracle JRE CVE-2013-2422 Vulnerability (CVE-2013-2422)

Severity

High

Classification

CVE-2008-2371 CWE-787

Tags

Missing Update Known Vulnerabilities