Vulnerability Name:

CVE-2015-5073

Assigned:2015-06-23
Published:2015-06-23
Updated:2018-05-17
Summary:Heap-based buffer overflow in the find_fixedlength function in pcre_compile.c in PCRE before 8.38 allows remote attackers to cause a denial of service (crash) or obtain sensitive information from heap memory and possibly bypass the ASLR protection mechanism via a crafted regular expression with an excess closing parenthesis.
CVSS v3 Severity:9.1 Critical (CVSS v3 Vector: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:H)
Exploitability Metrics:Attack Vector (AV): Network
Attack Complexity (AC): Low
Privileges Required (PR): None
User Interaction (UI): None
Scope:Scope (S): Unchanged
Impact Metrics:Confidentiality (C): High
Integrity (I): None
Availibility (A): High
7.3 High (CCN CVSS v3 Vector: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L)
Exploitability Metrics:Attack Vector (AV): Network
Attack Complexity (AC): Low
Privileges Required (PR): None
User Interaction (UI): None
Scope:Scope (S): Unchanged
Impact Metrics:Confidentiality (C): Low
Integrity (I): Low
Availibility (A): Low
CVSS v2 Severity:6.4 Medium (CVSS v2 Vector: AV:N/AC:L/Au:N/C:P/I:N/A:P)
5.2 Medium (Temporal CVSS v2 Vector: AV:N/AC:L/Au:N/C:P/I:N/A:P/E:U/RL:U/RC:UR)
Exploitability Metrics:Access Vector (AV): Network
Access Complexity (AC): Low
Authentication (Au): None
Impact Metrics:Confidentiality (C): Partial
Integrity (I): None
Availibility (A): Partial
7.5 High (CCN CVSS v2 Vector: AV:N/AC:L/Au:N/C:P/I:P/A:P)
6.0 Medium (CCN Temporal CVSS v2 Vector: AV:N/AC:L/Au:N/C:P/I:P/A:P/E:U/RL:U/RC:UR)
Exploitability Metrics:Access Vector (AV): Network
Access Complexity (AC): Low
Athentication (Au): None
Impact Metrics:Confidentiality (C): Partial
Integrity (I): Partial
Availibility (A): Partial
4.3 Medium (REDHAT CVSS v2 Vector: AV:N/AC:M/Au:N/C:N/I:N/A:P)
3.5 Low (REDHAT Temporal CVSS v2 Vector: AV:N/AC:M/Au:N/C:N/I:N/A:P/E:U/RL:U/RC:UR)
Exploitability Metrics:Access Vector (AV): Network
Access Complexity (AC): Medium
Authentication (Au): None
Impact Metrics:Confidentiality (C): None
Integrity (I): None
Availibility (A): Partial
Vulnerability Type:CWE-200
References:Source: REDHAT
Type: UNKNOWN
RHSA-2016:1025

Source: REDHAT
Type: UNKNOWN
RHSA-2016:2750

Source: CONFIRM
Type: VENDOR_ADVISORY
http://vcs.pcre.org/pcre/code/trunk/ChangeLog?revision=1609&view=markup

Source: CONFIRM
Type: VENDOR_ADVISORY
http://vcs.pcre.org/pcre?view=revision&revision=1571

Source: CONFIRM
Type: VENDOR_ADVISORY
http://www-01.ibm.com/support/docview.wss?uid=isg3T1023886

Source: MLIST
Type: UNKNOWN
[oss-security] 20150626 CVE Request: PCRE Library Heap Overflow Vulnerability in find_fixedlength()

Source: MLIST
Type: UNKNOWN
[oss-security] 20150626 Re: CVE Request: PCRE Library Heap Overflow Vulnerability in find_fixedlength()

Source: CONFIRM
Type: UNKNOWN
http://www.oracle.com/technetwork/topics/security/linuxbulletinapr2016-2952096.html

Source: BID
Type: VENDOR_ADVISORY
75430

Source: SECTRACK
Type: VENDOR_ADVISORY
1033154

Source: REDHAT
Type: UNKNOWN
RHSA-2016:1132

Source: CONFIRM
Type: UNKNOWN
https://bugs.exim.org/show_bug.cgi?id=1651

Source: XF
Type: UNKNOWN
pcre-cve20155073-bo(104098)

Source: GENTOO
Type: UNKNOWN
GLSA-201607-02

Vulnerable Configuration:Configuration 1:
  • cpe:/a:ibm:powerkvm:2.1:*:*:*:*:*:*:*
  • OR cpe:/a:ibm:powerkvm:3.1:*:*:*:*:*:*:*

  • Configuration 2:
  • cpe:/a:pcre:pcre:8.37:*:*:*:*:*:*:*

  • Configuration RedHat 1:
  • cpe:/o:redhat:enterprise_linux:7:*:*:*:*:*:*:*

  • * Denotes that component is vulnerable
    Oval Definitions
    Definition IDClassTitleLast Modified
    oval:org.opensuse.security:def:20155073
    V
    CVE-2015-5073
    2018-08-15
    oval:com.ubuntu.precise:def:20155073000
    V
    CVE-2015-5073 on Ubuntu 12.04 LTS (precise) - low.
    2016-12-13
    oval:com.ubuntu.trusty:def:20155073000
    V
    CVE-2015-5073 on Ubuntu 14.04 LTS (trusty) - low.
    2016-12-13
    oval:com.redhat.rhsa:def:20161025
    P
    RHSA-2016:1025: pcre security update (Important)
    2016-05-11
    BACK
    ibm powerkvm 2.1
    ibm powerkvm 3.1
    pcre pcre 8.37