5
CVSSv2

CVE-2013-7345

Published: 24/03/2014 Updated: 19/11/2014
CVSS v2 Base Score: 5 | Impact Score: 2.9 | Exploitability Score: 10
VMScore: 445
Vector: AV:N/AC:L/Au:N/C:N/I:N/A:P

Vulnerability Summary

The BEGIN regular expression in the awk script detector in magic/Magdir/commands in file prior to 5.15 uses multiple wildcards with unlimited repetitions, which allows context-dependent malicious users to cause a denial of service (CPU consumption) via a crafted ASCII file that triggers a large amount of backtracking, as demonstrated via a file with many newline characters.

Vulnerable Product Search on Vulmon Subscribe to Product

christos zoulas file 5.00

christos zoulas file 5.01

christos zoulas file 5.02

christos zoulas file 5.03

christos zoulas file 5.04

christos zoulas file 5.05

christos zoulas file 5.06

christos zoulas file 5.07

christos zoulas file 5.08

christos zoulas file 5.09

christos zoulas file 5.10

christos zoulas file 5.11

christos zoulas file 5.12

christos zoulas file 5.13

christos zoulas file

Vendor Advisories

Several vulnerabilities have been found in file, a file type classification tool Aaron Reffett reported a flaw in the way the file utility determined the type of Portable Executable (PE) format files, the executable format used on Windows When processing a defective or intentionally prepared PE executable which contains invalid offset information ...
The BEGIN regular expression in the awk script detector in magic/Magdir/commands in file before 515 uses multiple wildcards with unlimited repetitions, which allows context-dependent attackers to cause a denial of service (CPU consumption) via a crafted ASCII file that triggers a large amount of backtracking, as demonstrated via a file with many n ...
The BEGIN regular expression in the awk script detector in magic/Magdir/commands in file before 515 uses multiple wildcards with unlimited repetitions, which allows context-dependent attackers to cause a denial of service (CPU consumption) via a crafted ASCII file that triggers a large amount of backtracking, as demonstrated via a file with many n ...
The BEGIN regular expression in the awk script detector in magic/Magdir/commands in file before 515 uses multiple wildcards with unlimited repetitions, which allows context-dependent attackers to cause a denial of service (CPU consumption) via a crafted ASCII file that triggers a large amount of backtracking, as demonstrated via a file with many n ...
The BEGIN regular expression in the awk script detector in magic/Magdir/commands in file before 515 uses multiple wildcards with unlimited repetitions, which allows context-dependent attackers to cause a denial of service (CPU consumption) via a crafted ASCII file that triggers a large amount of backtracking, as demonstrated via a file with many n ...
The BEGIN regular expression in the awk script detector in magic/Magdir/commands in file before 515 uses multiple wildcards with unlimited repetitions, which allows context-dependent attackers to cause a denial of service (CPU consumption) via a crafted ASCII file that triggers a large amount of backtracking, as demonstrated via a file with many n ...
Several vulnerabilities were found in PHP, a general-purpose scripting language commonly used for web application development It has been decided to follow the stable 54x releases for the Wheezy PHP packages Consequently the vulnerabilities are addressed by upgrading PHP to a new upstream version 5434, which includes additional bug fixes, new ...
File could be made to crash or hang if it processed specially crafted data ...
Several vulnerabilities were found in PHP, a general-purpose scripting language commonly used for web application development The Common Vulnerabilities and Exposures project identifies the following problems: CVE-2014-3538 It was discovered that the original fix for CVE-2013-7345 did not sufficiently address the problem A remote attacke ...