Description

Algorithmic complexity vulnerability in the regular expression parser in TCL before 8.4.17, as used in PostgreSQL 8.2 before 8.2.6, 8.1 before 8.1.11, 8.0 before 8.0.15, and 7.4 before 7.4.19, allows remote authenticated users to cause a denial of service (memory consumption) via a crafted "complex" regular expression with doubly-nested states.

Remediation

References

CVE-2007-6067

Related Vulnerabilities

WordPress Plugin Ninja Forms Contact Form-The Drag and Drop Form Builder for WordPress Multiple Vulnerabilities (3.3.13)

MySQL CVE-2020-2924 Vulnerability (CVE-2020-2924)

IBM RTC Cross-site Scripting (XSS) Vulnerability (CVE-2020-4691)

Oracle Database Server CVE-2009-1994 Vulnerability (CVE-2009-1994)

WordPress Plugin Formidable Forms-Contact Form, Survey, Quiz, Calculator & Custom Form Builder Unspecified Vulnerability (5.0.09)

Severity

Medium

Classification

CVE-2007-6067

Tags

Missing Update Known Vulnerabilities