|
Family: SuSE Local Security Checks --> Category: infos
SUSE-SA:2005:048: pcre Vulnerability Scan
Vulnerability Scan Summary Check for the version of the pcre package
Detailed Explanation for this Vulnerability Test
The remote host is missing the patch for the advisory SUSE-SA:2005:048 (pcre).
A vulnerability was found in the PCRE regular expression handling
library which allows a possible hacker to crash or overflow a buffer in the
program by specifying a special regular expression.
Since this library is used in a large number of packages, including
apache2, php4, exim, postfix and similar, a remote attack could be
possible.
This is tracked by the Mitre CVE ID CVE-2005-2491.
Solution : http://www.suse.de/security/advisories/2005_48_pcre.html
Threat Level: High
Click HERE for more information and discussions on this network vulnerability scan.
|