PCRE before 8.38 - Mishandling of -q Option for Binary Files Vulnerability

PCRE before 8.38 - Mishandling of -q Option for Binary Files Vulnerability

CVE-2015-8393 · HIGH Severity

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

pcregrep in PCRE before 8.38 mishandles the -q option for binary files, which might allow remote attackers to obtain sensitive information via a crafted file, as demonstrated by a CGI script that sends stdout data to a client.

Learn more about our Web Application Penetration Testing UK.