National Vulnerability Database (NVD) National Vulnerability Database (CVE-2006-7228)

National Cyber Awareness System

Vulnerability Summary for CVE-2006-7228

Original release date:11/14/2007

Last revised:03/08/2011

Source: US-CERT/NIST

Overview

Integer overflow in Perl-Compatible Regular Expression (PCRE) library before 6.7 might allow context-dependent attackers to execute arbitrary code via a regular expression that involves large (1) min, (2) max, or (3) duplength values that cause an incorrect length calculation and trigger a buffer overflow, a different vulnerability than CVE-2006-7227. NOTE: this issue was originally subsumed by CVE-2006-7224, but that CVE has been REJECTED and split.

Impact

CVSS Severity (version 2.0):

CVSS v2 Base Score:6.8 (MEDIUM) (AV:N/AC:M/Au:N/C:P/I:P/A:P) (legend)

Impact Subscore: 6.4

Exploitability Subscore: 8.6

CVSS Version 2 Metrics:

Access Vector: Network exploitable

Access Complexity: Medium

Authentication: Not required to exploit

Impact Type:Allows unauthorized disclosure of information; Allows unauthorized modification; Allows disruption of service

References to Advisories, Solutions, and Tools

By selecting these links, you will be leaving NIST webspace. We have provided these links to other web sites because they may have information that would be of interest to you. No inferences should be drawn on account of other sites being referenced, or not, from this page. There may be other web sites that are more appropriate for your purpose. NIST does not necessarily endorse the views expressed, or concur with the facts presented on these sites. Further, NIST does not endorse any commercial products that may be mentioned on these sites. Please address comments about this page to nvd@nist.gov.

External Source: SECUNIA

Name: 27582

Type: Patch Information

Hyperlink:http://secunia.com/advisories/27582

External Source: MISC

Name: https://bugzilla.redhat.com/show_bug.cgi?id=383371

Hyperlink:https://bugzilla.redhat.com/show_bug.cgi?id=383371

External Source: VUPEN

Name: ADV-2008-1234

Hyperlink:http://www.vupen.com/english/advisories/2008/1234/references

External Source: VUPEN

Name: ADV-2008-0637

Hyperlink:http://www.vupen.com/english/advisories/2008/0637

External Source: BID

Name: 26462

Hyperlink:http://www.securityfocus.com/bid/26462

External Source: BUGTRAQ

Name: 20080416 VMSA-2008-0007 Moderate Updated Service Console packages pcre, net-snmp, and OpenPegasus

Hyperlink:http://www.securityfocus.com/archive/1/archive/1/490917/100/0/threaded

External Source: REDHAT

Name: RHSA-2007:1077

Hyperlink:http://www.redhat.com/support/errata/RHSA-2007-1077.html

External Source: REDHAT

Name: RHSA-2007:1076

Hyperlink:http://www.redhat.com/support/errata/RHSA-2007-1076.html

External Source: REDHAT

Name: RHSA-2007:1068

Hyperlink:http://www.redhat.com/support/errata/RHSA-2007-1068.html

External Source: REDHAT

Name: RHSA-2007:1065

Hyperlink:http://www.redhat.com/support/errata/RHSA-2007-1065.html

External Source: REDHAT

Name: RHSA-2007:1063

Hyperlink:http://www.redhat.com/support/errata/RHSA-2007-1063.html

External Source: REDHAT

Name: RHSA-2007:1059

Hyperlink:http://www.redhat.com/support/errata/RHSA-2007-1059.html

External Source: CONFIRM

Name: http://www.pcre.org/changelog.txt

Hyperlink:http://www.pcre.org/changelog.txt

External Source: SUSE

Name: SUSE-SA:2007:062

Hyperlink:http://www.novell.com/linux/security/advisories/2007_62_pcre.html

External Source: MANDRIVA

Name: MDVSA-2008:030

Hyperlink:http://www.mandriva.com/security/advisories?name=MDVSA-2008:030

External Source: MANDRIVA

Name: MDVSA-2008:012

Hyperlink:http://www.mandriva.com/security/advisories?name=MDVSA-2008:012

External Source: DEBIAN

Name: DSA-1570

Hyperlink:http://www.debian.org/security/2008/dsa-1570

External Source: CONFIRM

Name: http://support.avaya.com/elmodocs2/security/ASA-2007-505.htm

Hyperlink:http://support.avaya.com/elmodocs2/security/ASA-2007-505.htm

External Source: GENTOO

Name: GLSA-200801-19

Hyperlink:http://security.gentoo.org/glsa/glsa-200801-19.xml

External Source: GENTOO

Name: GLSA-200801-18

Hyperlink:http://security.gentoo.org/glsa/glsa-200801-18.xml

External Source: GENTOO

Name: GLSA-200801-02

Hyperlink:http://security.gentoo.org/glsa/glsa-200801-02.xml

External Source: GENTOO

Name: GLSA-200711-30

Hyperlink:http://security.gentoo.org/glsa/glsa-200711-30.xml

External Source: SECUNIA

Name: 30106

Hyperlink:http://secunia.com/advisories/30106

External Source: SECUNIA

Name: 28720

Hyperlink:http://secunia.com/advisories/28720

External Source: SECUNIA

Name: 28714

Hyperlink:http://secunia.com/advisories/28714

External Source: SECUNIA

Name: 28658

Hyperlink:http://secunia.com/advisories/28658

External Source: SECUNIA

Name: 28414

Hyperlink:http://secunia.com/advisories/28414

External Source: SECUNIA

Name: 28406

Hyperlink:http://secunia.com/advisories/28406

External Source: SECUNIA

Name: 28050

Hyperlink:http://secunia.com/advisories/28050

External Source: SECUNIA

Name: 28041

Hyperlink:http://secunia.com/advisories/28041

External Source: SECUNIA

Name: 28027

Hyperlink:http://secunia.com/advisories/28027

External Source: SECUNIA

Name: 27776

Hyperlink:http://secunia.com/advisories/27776

External Source: SECUNIA

Name: 27773

Hyperlink:http://secunia.com/advisories/27773

External Source: SECUNIA

Name: 27741

Hyperlink:http://secunia.com/advisories/27741

External Source: MISC

Name: http://scary.beasts.org/security/CESA-2007-006.html

Hyperlink:http://scary.beasts.org/security/CESA-2007-006.html

External Source: OVAL

Name: oval:org.mitre.oval:def:10810

Hyperlink:http://oval.mitre.org/repository/data/getDef?id=oval:org.mitre.oval:def:10810

External Source: SUSE

Name: SUSE-SA:2008:004

Hyperlink:http://lists.opensuse.org/opensuse-security-announce/2008-01/msg00006.html

External Source: MISC

Name: http://bugs.gentoo.org/show_bug.cgi?id=198976

Hyperlink:http://bugs.gentoo.org/show_bug.cgi?id=198976

External Source: BUGTRAQ

Name: 20080221 VMSA-2008-0003 Moderate: Updated aacraid driver and samba and python service console updates

Hyperlink:http://www.securityfocus.com/archive/1/archive/1/488457/100/0/threaded

External Source: REDHAT

Name: RHSA-2008:0546

Hyperlink:http://www.redhat.com/support/errata/RHSA-2008-0546.html

External Source: GENTOO

Name: GLSA-200805-11

Hyperlink:http://security.gentoo.org/glsa/glsa-200805-11.xml

External Source: GENTOO

Name: GLSA-200802-10

Hyperlink:http://security.gentoo.org/glsa/glsa-200802-10.xml

External Source: SECUNIA

Name: 31124

Hyperlink:http://secunia.com/advisories/31124

External Source: SECUNIA

Name: 30219

Hyperlink:http://secunia.com/advisories/30219

External Source: SECUNIA

Name: 30155

Hyperlink:http://secunia.com/advisories/30155

External Source: SECUNIA

Name: 29785

Hyperlink:http://secunia.com/advisories/29785

External Source: SECUNIA

Name: 29085

Hyperlink:http://secunia.com/advisories/29085

External Source: SECUNIA

Name: 29032

Hyperlink:http://secunia.com/advisories/29032

External Source: MLIST

Name: [Security-announce] 20080415 VMSA-2008-0007 Moderate Updated Service Console packages pcre, net-snmp, and OpenPegasus

Hyperlink:http://lists.vmware.com/pipermail/security-announce/2008/000014.html

External Source: MLIST

Name: [Security-announce] 20080221 VMSA-2008-0003 Moderate: Updated aacraid driver and samba and python service console updates

Hyperlink:http://lists.vmware.com/pipermail/security-announce/2008/000005.html

References to Check Content

Identifier:oval:org.mitre.oval:def:10810

Check System:http://oval.mitre.org/XMLSchema/oval-definitions-5

Hyperlink:http://oval.mitre.org/repository/data/DownloadDefinition?id=oval:org.mitre.oval:def:10810

Vulnerable software and versions

Configuration 1

* cpe:/a:pcre:pcre:6.6 and previous versions

* Denotes Vulnerable Software

Technical Details

Vulnerability Type (View All)

Numeric Errors (CWE-189)

CVE Standard Vulnerability Entry:http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-7228