Get a demo
100% Signal 0% Noise Invicti Logo - The Largest Dynamic Application Security Solutions Provider In The World Get a demo
Web Application Vulnerabilities Runtime SCA Findings
Looking for the vulnerability index of Invicti's legacy products?
Invicti Enterprise Acunetix Standard & Premium
PHP Improper Restriction of Operations within the Bounds of a Memory Buffer Vulnerability - CVE-2015-8391 - Vulnerability Database
PHP

PHP Improper Restriction of Operations within the Bounds of a Memory Buffer Vulnerability - CVE-2015-8391

Critical
Reference: CVE-2015-8391
NVD Link: https://nvd.nist.gov/vuln/detail/CVE-2015-8391
Title: PHP Improper Restriction of Operations within the Bounds of a Memory Buffer Vulnerability
Overview:

The pcre_compile function in pcre_compile.c in PCRE before 8.38 mishandles certain : nesting which allows remote attackers to cause a denial of service (CPU consumption) or possibly have unspecified other impact via a crafted regular expression as demonstrated by a JavaScript RegExp object encountered by Konqueror.