Bugtraq mailing list archives
Re: Regular Expression Denial of Service
From: Pavel Kankovsky <peak () argo troja mff cuni cz>
Date: Sun, 13 Sep 2009 21:35:09 +0200 (MET DST)
Oops. "PCRE" in my response should have read "Perl". PCRE implementation is different from the implementation included in Perl--and rather ironically it seems PCRE is vulnerable. -- Pavel Kankovsky aka Peak / Jeremiah 9:21 \ "For death is come up into our MS Windows(tm)..." \ 21st century edition /
Current thread:
- Regular Expression Denial of Service Alex Roichman (Sep 11)
- Re: Regular Expression Denial of Service Gadi Evron (Sep 11)
- Re[2]: Regular Expression Denial of Service Thierry Zoller (Sep 11)
- Re: Regular Expression Denial of Service Gadi Evron (Sep 11)
- Re: Re[2]: Regular Expression Denial of Service Jeffrey Walton (Sep 14)
- Re[2]: Regular Expression Denial of Service Thierry Zoller (Sep 11)
- Re: Regular Expression Denial of Service Pavel Kankovsky (Sep 14)
- Re: Regular Expression Denial of Service Pavel Kankovsky (Sep 14)
- <Possible follow-ups>
- Re: Regular Expression Denial of Service hackerwebzine (Sep 28)
- Re: Regular Expression Denial of Service Gadi Evron (Sep 11)