Unrated severityNVD Advisory· Published Aug 23, 2005· Updated Apr 16, 2026
CVE-2005-2491
CVE-2005-2491
Description
Integer overflow in pcre_compile.c in Perl Compatible Regular Expressions (PCRE) before 6.2, as used in multiple products such as Python, Ethereal, and PHP, allows attackers to execute arbitrary code via quantifier values in regular expressions, which leads to a heap-based buffer overflow.
Affected products
3Patches
0No patches discovered yet.
Vulnerability mechanics
AI mechanics synthesis has not run for this CVE yet.
References
67- securitytracker.com/idnvdPatch
- www.ethereal.com/appnotes/enpa-sa-00021.htmlnvdURL Repurposed
- ftp.sco.com/pub/updates/OpenServer/SCOSA-2006.10/SCOSA-2006.10.txtnvd
- patches.sgi.com/support/free/security/advisories/20060401-01-Unvd
- docs.info.apple.com/article.htmlnvd
- itrc.hp.com/service/cki/docDisplay.donvd
- lists.trustix.org/pipermail/tsl-announce/2005-October/000354.htmlnvd
- marc.infonvd
- marc.infonvd
- marc.infonvd
- secunia.com/advisories/16502nvd
- secunia.com/advisories/16679nvd
- secunia.com/advisories/17252nvd
- secunia.com/advisories/17813nvd
- secunia.com/advisories/19072nvd
- secunia.com/advisories/19193nvd
- secunia.com/advisories/19532nvd
- secunia.com/advisories/21522nvd
- secunia.com/advisories/22691nvd
- secunia.com/advisories/22875nvd
- securityreason.com/securityalert/604nvd
- sunsolve.sun.com/search/document.donvd
- support.avaya.com/elmodocs2/security/ASA-2005-216.pdfnvd
- support.avaya.com/elmodocs2/security/ASA-2005-223.pdfnvd
- support.avaya.com/elmodocs2/security/ASA-2006-081.htmnvd
- support.avaya.com/elmodocs2/security/ASA-2006-159.htmnvd
- www.debian.org/security/2005/dsa-800nvd
- www.debian.org/security/2005/dsa-817nvd
- www.debian.org/security/2005/dsa-819nvd
- www.debian.org/security/2005/dsa-821nvd
- www.gentoo.org/security/en/glsa/glsa-200508-17.xmlnvd
- www.gentoo.org/security/en/glsa/glsa-200509-02.xmlnvd
- www.gentoo.org/security/en/glsa/glsa-200509-08.xmlnvd
- www.gentoo.org/security/en/glsa/glsa-200509-12.xmlnvd
- www.gentoo.org/security/en/glsa/glsa-200509-19.xmlnvd
- www.novell.com/linux/security/advisories/2005_48_pcre.htmlnvd
- www.novell.com/linux/security/advisories/2005_49_php.htmlnvd
- www.novell.com/linux/security/advisories/2005_52_apache2.htmlnvd
- www.php.net/release_4_4_1.phpnvd
- www.redhat.com/support/errata/RHSA-2005-358.htmlnvd
- www.redhat.com/support/errata/RHSA-2005-761.htmlnvd
- www.redhat.com/support/errata/RHSA-2006-0197.htmlnvd
- www.securityfocus.com/archive/1/427046/100/0/threadednvd
- www.securityfocus.com/archive/1/428138/100/0/threadednvd
- www.securityfocus.com/bid/14620nvd
- www.securityfocus.com/bid/15647nvd
- www.vupen.com/english/advisories/2005/1511nvd
- www.vupen.com/english/advisories/2005/2659nvd
- www.vupen.com/english/advisories/2006/0789nvd
- www.vupen.com/english/advisories/2006/4320nvd
- www.vupen.com/english/advisories/2006/4502nvd
- lists.apache.org/thread.html/54a42d4b01968df1117cea77fc53d6beb931c0e05936ad02af93e9ac%40%3Ccvs.httpd.apache.org%3Envd
- lists.apache.org/thread.html/5df9bfb86a3b054bb985a45ff9250b0332c9ecc181eec232489e7f79%40%3Ccvs.httpd.apache.org%3Envd
- lists.apache.org/thread.html/r0276683d8e1e07153fc8642618830ac0ade85b9ae0dc7b07f63bb8fc%40%3Ccvs.httpd.apache.org%3Envd
- lists.apache.org/thread.html/r2cb985de917e7da0848c440535f65a247754db8b2154a10089e4247b%40%3Ccvs.httpd.apache.org%3Envd
- lists.apache.org/thread.html/r5001ecf3d6b2bdd0b732e527654248abb264f08390045d30709a92f6%40%3Ccvs.httpd.apache.org%3Envd
- lists.apache.org/thread.html/r8828e649175df56f1f9e3919938ac7826128525426e2748f0ab62feb%40%3Ccvs.httpd.apache.org%3Envd
- lists.apache.org/thread.html/r9e8622254184645bc963a1d47c5d47f6d5a36d6f080d8d2c43b2b142%40%3Ccvs.httpd.apache.org%3Envd
- lists.apache.org/thread.html/r9f93cf6dde308d42a9c807784e8102600d0397f5f834890708bf6920%40%3Ccvs.httpd.apache.org%3Envd
- lists.apache.org/thread.html/rafd145ba6cd0a4ced113a5823cdaff45aeb36eb09855b216401c66d6%40%3Ccvs.httpd.apache.org%3Envd
- lists.apache.org/thread.html/rd65d8ba68ba17e7deedafbf5bb4899f2ae4dad781d21b931c2941ac3%40%3Ccvs.httpd.apache.org%3Envd
- lists.apache.org/thread.html/re895fc1736d25c8cf57e102c871613b8aeec9ea26fd8a44e7942b5ab%40%3Ccvs.httpd.apache.org%3Envd
- lists.apache.org/thread.html/rf6449464fd8b7437704c55f88361b66f12d5b5f90bcce66af4be4ba9%40%3Ccvs.httpd.apache.org%3Envd
- oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11516nvd
- oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A1496nvd
- oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A1659nvd
- oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A735nvd
News mentions
0No linked articles in our index yet.