Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2008-0674

Overview

Vulnerability Score 7.5 7.5
CVE Id CVE-2008-0674
Last Modified 30 Oct 2012 10:52:03
Published 18 Feb 2008 06:00:00
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact PARTIAL PARTIAL
Availability Impact PARTIAL PARTIAL
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2008-0674

Summary

Buffer overflow in PCRE before 7.6 allows remote attackers to execute arbitrary code via a regular expression containing a character class with a large number of characters with Unicode code points greater than 255.

Vulnerable Systems

Application

  • Pcre 7.5


References

CERT - TA09-218A

CONFIRM - https://bugzilla.redhat.com/show_bug.cgi?id=431660

VUPEN - ADV-2009-2172

VUPEN - ADV-2008-2780

VUPEN - ADV-2008-2268

VUPEN - ADV-2008-1412

VUPEN - ADV-2008-0592

VUPEN - ADV-2008-0570

SECTRACK - 1022674

BID - 31681

CONFIRM - http://support.apple.com/kb/HT3757

CONFIRM - http://support.apple.com/kb/HT3216

SECUNIA - 36096

SECUNIA - 32222

SECUNIA - 31326

CONFIRM - http://pcre.org/changelog.txt

APPLE - APPLE-SA-2009-08-05-1

APPLE - APPLE-SA-2008-10-09

APPLE - APPLE-SA-2008-07-31

FEDORA - FEDORA-2008-1842

FEDORA - FEDORA-2008-1783

FEDORA - FEDORA-2008-1533

CONFIRM - https://issues.rpath.com/browse/RPL-2503

CONFIRM - https://issues.rpath.com/browse/RPL-2223

XF - pcre-characterclass-bo(40505)

UBUNTU - USN-581-1

BID - 29009

BID - 27786

BUGTRAQ - 20080523 rPSA-2008-0176-1 php php-cgi php-imap php-mcrypt php-mysql php-mysqli php-pgsql php-soap php-xsl php5 php5-cgi php5-imap php5-mcrypt php5-mysql php5-mysqli php5-pear php5-pgsql php5-soap php5-xsl

BUGTRAQ - 20080228 rPSA-2008-0086-1 pcre

CONFIRM - http://www.php.net/ChangeLog-5.php

MLIST - [oss-security] 20080502 CVE Request (PHP)

MANDRIVA - MDVSA-2008:053

DEBIAN - DSA-1499

CONFIRM - http://wiki.rpath.com/wiki/Advisories:rPSA-2008-0176

CONFIRM - http://wiki.rpath.com/wiki/Advisories:rPSA-2008-0086

CONFIRM - http://wiki.rpath.com/Advisories:rPSA-2008-0086

GENTOO - GLSA-200803-24

SECUNIA - 30345

SECUNIA - 30048

SECUNIA - 29282

SECUNIA - 29267

SECUNIA - 29175

SECUNIA - 29048

SECUNIA - 29027

SECUNIA - 28996

SECUNIA - 28985

SECUNIA - 28960

SECUNIA - 28957

SECUNIA - 28923

SUSE - SUSE-SR:2008:004

CONFIRM - http://ftp.gnome.org/pub/gnome/sources/glib/2.14/glib-2.14.6.news

GENTOO - GLSA-200811-05

SECUNIA - 32746

Related Patches

Apple 2008-07-31 Security Update 2008-005 (PPC)

Apple 2008-07-31 Security Update 2008-005 Server (PPC)

Apple 2008-07-31 Security Update 2008-005 (Leopard)

Apple 2008-07-31 Security Update 2008-005 (Intel)

Apple 2008-07-31 Security Update 2008-005 Server (Intel)

Apple 2008-10-09 Security Update 2008-007 Client (PPC)

Apple 2008-10-09 Security Update 2008-007 Server (PPC)

Apple 2008-10-09 Security Update 2008-007 Client (Intel)

Apple 2008-10-09 Security Update 2008-007 Server (Universal)

Apple 2008-10-09 Security Update 2008-007 Server (Leopard)

Apple 2009-08-31 Mac OS X Server 10.5.8 v1.1 Update (See Note)

Apple 2009-08-31 Mac OS X Server 10.5.8 v1.1 Combo Update (See Note)


Last Updated: 27 May 2016 10:47:18