Vulnerability identifier: #VU7565
Vulnerability risk: Low
Exploitation vector: Network
The vulnerability allows a remote attacker to cause DoS condition on the target system.
The weakness exists due to invalid memory read flaw in the _pcre32_xclass function in pcre_xclass.c. A remote attacker can trick the victim into loading a specially crafted file and cause the application to crash.
Successful exploitation of the vulnerability results in denial of service.
Update to version 8.41 (not released at the moment)
Vulnerable software versions
Fixed software versions
Can this vulnerability be exploited remotely?
Is there known malware, which exploits this vulnerability?