CVE-2015-8393

Published: Dec 2, 2015

Modified: Aug 6, 2024

PUBLISHED

Description

pcregrep in PCRE before 8.38 mishandles the -q option for binary files, which might allow remote attackers to obtain sensitive information via a crafted file, as demonstrated by a CGI script that sends stdout data to a client.

Vendor	Product	Versions
n/a	n/a	affected `n/a`

References

[oss-security] 20151128 Re: Heap Overflow in PCRE

mailing-list

82990

vdb-entry

FEDORA-2015-eb896290d3

vendor-advisory

https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c05240731

https://bto.bluecoat.com/security-advisory/sa128

http://vcs.pcre.org/pcre/code/trunk/ChangeLog?view=markup

GLSA-201607-02

vendor-advisory

https://security.netapp.com/advisory/ntap-20230216-0002/

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Start Training

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

Scan Now

CVE-2015-8393

Description

Affected Products

References