SUSE-SA:2005:048: pcre

high Nessus Plugin ID 19927

Synopsis

The remote host is missing a vendor-supplied security patch

Description

The remote host is missing the patch for the advisory SUSE-SA:2005:048 (pcre).


A vulnerability was found in the PCRE regular expression handling library which allows an attacker to crash or overflow a buffer in the program by specifying a special regular expression.

Since this library is used in a large number of packages, including apache2, php4, exim, postfix and similar, a remote attack could be possible.

This is tracked by the Mitre CVE ID CVE-2005-2491.

Solution

http://www.suse.de/security/advisories/2005_48_pcre.html

Plugin Details

Severity: High

ID: 19927

File Name: suse_SA_2005_048.nasl

Version: 1.9

Agent: unix

Published: 10/5/2005

Updated: 1/14/2021

Supported Sensors: Nessus Agent, Nessus

Vulnerability Information

Required KB Items: Host/SuSE/rpm-list