Executive Summary

Informations
NameCVE-2015-8853First vendor Publication2016-05-25
VendorCveLast vendor Modification2018-05-01

Security-Database Scoring CVSS v2

Cvss vector : (AV:N/AC:L/Au:N/C:N/I:N/A:P)
Cvss Base Score5Attack RangeNetwork
Cvss Impact Score2.9Attack ComplexityLow
Cvss Expoit Score10AuthenticationNone Required
Calculate full CVSS 2.0 Vectors scores

Detail

The (1) S_reghop3, (2) S_reghop4, and (3) S_reghopmaybe3 functions in regexec.c in Perl before 5.24.0 allow context-dependent attackers to cause a denial of service (infinite loop) via crafted utf-8 data, as demonstrated by "a\x80."

Original Source

Url : http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-8853

CWE : Common Weakness Enumeration

%idName
100 %CWE-20Improper Input Validation

CPE : Common Platform Enumeration

TypeDescriptionCount
Application369
Os1

Nessus® Vulnerability Scanner

DateDescription
2017-01-30Name : The remote Gentoo host is missing one or more security-related patches.
File : gentoo_GLSA-201701-75.nasl - Type : ACT_GATHER_INFO
2016-09-19Name : The remote openSUSE host is missing a security update.
File : openSUSE-2016-1086.nasl - Type : ACT_GATHER_INFO
2016-09-12Name : The remote SUSE host is missing one or more security updates.
File : suse_SU-2016-2263-1.nasl - Type : ACT_GATHER_INFO
2016-09-08Name : The remote SUSE host is missing one or more security updates.
File : suse_SU-2016-2246-1.nasl - Type : ACT_GATHER_INFO
2016-05-09Name : The remote Fedora host is missing a security update.
File : fedora_2016-5a9313e4b4.nasl - Type : ACT_GATHER_INFO

Sources (Detail)

SourceUrl
BID http://www.securityfocus.com/bid/86707
CONFIRM http://perl5.git.perl.org/perl.git/commitdiff/22b433eff9a1ffa2454e18405a56650...
http://www.oracle.com/technetwork/topics/security/bulletinapr2016-2952098.html
http://www.oracle.com/technetwork/topics/security/bulletinjul2016-3090568.html
https://bugzilla.redhat.com/show_bug.cgi?id=1329106
https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_n...
https://rt.perl.org/Public/Bug/Display.html?id=123562
FEDORA http://lists.fedoraproject.org/pipermail/package-announce/2016-May/183592.html
GENTOO https://security.gentoo.org/glsa/201701-75
MLIST http://www.openwall.com/lists/oss-security/2016/04/20/5
http://www.openwall.com/lists/oss-security/2016/04/20/7
UBUNTU https://usn.ubuntu.com/3625-1/
https://usn.ubuntu.com/3625-2/

Alert History

If you want to see full details history, please login or register.
0
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
DateInformations
2018-05-02 09:19:24
  • Multiple Updates
2018-04-19 09:19:27
  • Multiple Updates
2017-07-01 09:23:18
  • Multiple Updates
2017-03-01 12:01:43
  • Multiple Updates
2017-01-31 13:26:20
  • Multiple Updates
2016-11-29 00:25:42
  • Multiple Updates
2016-10-06 05:21:08
  • Multiple Updates
2016-10-04 09:24:10
  • Multiple Updates
2016-09-23 09:23:47
  • Multiple Updates
2016-09-20 13:25:38
  • Multiple Updates
2016-09-13 13:23:56
  • Multiple Updates
2016-09-09 13:24:12
  • Multiple Updates
2016-08-24 09:24:18
  • Multiple Updates
2016-08-04 12:01:40
  • Multiple Updates
2016-05-26 00:24:13
  • Multiple Updates
2016-05-25 21:26:49
  • First insertion