Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

nvd логотип

CVE-2013-7345

Опубликовано: 24 мар. 2014
Источник: nvd
CVSS2: 5
EPSS Низкий

Описание

The BEGIN regular expression in the awk script detector in magic/Magdir/commands in file before 5.15 uses multiple wildcards with unlimited repetitions, which allows context-dependent attackers to cause a denial of service (CPU consumption) via a crafted ASCII file that triggers a large amount of backtracking, as demonstrated via a file with many newline characters.

Ссылки

Уязвимые конфигурации

Конфигурация 1
cpe:2.3:a:christos_zoulas:file:*:*:*:*:*:*:*:*
Версия до 5.15 (исключая)
Конфигурация 2

Одно из

cpe:2.3:a:php:php:*:*:*:*:*:*:*:*
Версия от 5.4.0 (включая) до 5.4.27 (исключая)
cpe:2.3:a:php:php:*:*:*:*:*:*:*:*
Версия от 5.5.0 (включая) до 5.5.11 (исключая)
Конфигурация 3

Одно из

cpe:2.3:o:debian:debian_linux:6.0:*:*:*:*:*:*:*
cpe:2.3:o:debian:debian_linux:7.0:*:*:*:*:*:*:*
cpe:2.3:o:debian:debian_linux:8.0:*:*:*:*:*:*:*

EPSS

Процентиль: 80%
0.01525
Низкий

5 Medium

CVSS2

Дефекты

NVD-CWE-noinfo

Связанные уязвимости

ubuntu логотип

CVE-2013-7345

ubuntu
больше 11 лет назад

The BEGIN regular expression in the awk script detector in magic/Magdir/commands in file before 5.15 uses multiple wildcards with unlimited repetitions, which allows context-dependent attackers to cause a denial of service (CPU consumption) via a crafted ASCII file that triggers a large amount of backtracking, as demonstrated via a file with many newline characters.

redhat логотип

CVE-2013-7345

redhat
больше 13 лет назад

The BEGIN regular expression in the awk script detector in magic/Magdir/commands in file before 5.15 uses multiple wildcards with unlimited repetitions, which allows context-dependent attackers to cause a denial of service (CPU consumption) via a crafted ASCII file that triggers a large amount of backtracking, as demonstrated via a file with many newline characters.

debian логотип

CVE-2013-7345

debian
больше 11 лет назад

The BEGIN regular expression in the awk script detector in magic/Magdi ...

github логотип

GHSA-63f8-4qqh-pqqj

github
около 3 лет назад

The BEGIN regular expression in the awk script detector in magic/Magdir/commands in file before 5.15 uses multiple wildcards with unlimited repetitions, which allows context-dependent attackers to cause a denial of service (CPU consumption) via a crafted ASCII file that triggers a large amount of backtracking, as demonstrated via a file with many newline characters.

fstec логотип

BDU:2015-09777

fstec
почти 11 лет назад

Уязвимость операционной системы Gentoo Linux, позволяющая удаленному злоумышленнику нарушить доступность защищаемой информации

EPSS

Процентиль: 80%
0.01525
Низкий

5 Medium

CVSS2

Дефекты

NVD-CWE-noinfo