Vulnerability   
Search   
    Search 219043 CVE descriptions
and 99761 test descriptions,
access 10,000+ cross references.
Tests   CVE   All  

CVE ID:CVE-2013-7345
Description:The BEGIN regular expression in the awk script detector in magic/Magdir/commands in file before 5.15 uses multiple wildcards with unlimited repetitions, which allows context-dependent attackers to cause a denial of service (CPU consumption) via a crafted ASCII file that triggers a large amount of backtracking, as demonstrated via a file with many newline characters.
Test IDs: 1.3.6.1.4.1.25623.1.0.703008   1.3.6.1.4.1.25623.1.0.120476   1.3.6.1.4.1.25623.1.0.120208   1.3.6.1.4.1.25623.1.0.120047   1.3.6.1.4.1.25623.1.0.120048   1.3.6.1.4.1.25623.1.0.120477   1.3.6.1.4.1.25623.1.0.120475   1.3.6.1.4.1.25623.1.0.121252  
Cross References: Common Vulnerability Exposure (CVE) ID: CVE-2013-7345
Debian Security Information: DSA-2873 (Google Search)
http://www.debian.org/security/2014/dsa-2873
RedHat Security Advisories: RHSA-2014:1765
http://rhn.redhat.com/errata/RHSA-2014-1765.html




© 1998-2021 E-Soft Inc. All rights reserved.