Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
cve[email protected]CVE-2011-3336
HistoryFeb 12, 2020 - 8:15 p.m.

CVE-2011-3336

2020-02-1220:15:13
CWE-400
[email protected]
web.nvd.nist.gov
92
cve-2011-3336
regcomp
bsd
libc
denial of service
stack exhaustion
nvd

7.8 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:N/I:N/A:C

7.5 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

7.2 High

AI Score

Confidence

High

0.061 Low

EPSS

Percentile

93.6%

JSON

regcomp in the BSD implementation of libc is vulnerable to denial of service due to stack exhaustion.

Affected configurations

NVD
Node
phpphpRange5.3.05.3.10
OR
applemac_os_xRange10.6.010.7.2
OR
freebsdfreebsdMatch8.2-
OR
openbsdopenbsdMatch5.0

CNA Affected

[
  {
    "product": "macOS",
    "vendor": "Apple",
    "versions": [
      {
        "status": "affected",
        "version": "through 2011"
      }
    ]
  }
]

Related

nvd 1
prion 1
cvelist 1
openvas 1
packetstorm 2
ubuntucve 1
securityvulns 1
nvd
nvd
CVE-2011-3336
2020-02-12 20:15:13
prion
prion
Stack overflow
2020-02-12 20:15:00
cvelist
cvelist
CVE-2011-3336
2020-02-12 19:32:03
openvas
openvas
PHP 5.3.x <= 5.3.10 'libc/regcomp' Multiple Vulnerabilities - BSD
2021-11-22 00:00:00
packetstorm
packetstorm
BSD libc/regcomp(3) Memory Management / Recursion
2011-11-04 00:00:00
OS X / Safari / Firefox REGEX Denial Of Service
2014-03-14 00:00:00
ubuntucve
ubuntucve
CVE-2011-3336
2020-02-12 00:00:00
securityvulns
securityvulns
MacOSX Safari Firefox Kaspersky RegExp Remote/Local Denial of Service
2014-03-18 00:00:00

7.8 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:N/I:N/A:C

7.5 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

7.2 High

AI Score

Confidence

High

0.061 Low

EPSS

Percentile

93.6%

JSON
Related for CVE-2011-3336
nvd1prion1cvelist1openvas1packetstorm2ubuntucve1securityvulns1