Integer Overflow in MuJS js_regcomp Function Allows Denial of Service

Integer Overflow in MuJS js_regcomp Function Allows Denial of Service

CVE-2016-9108 · HIGH Severity

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

Integer overflow in the js_regcomp function in regexp.c in Artifex Software, Inc. MuJS before commit b6de34ac6d8bb7dd5461c57940acfbd3ee7fd93e allows attackers to cause a denial of service (application crash) via a crafted regular expression.

Learn more about our Web Application Penetration Testing UK.