Vulnerability Details : CVE-2013-7345
The BEGIN regular expression in the awk script detector in magic/Magdir/commands in file before 5.15 uses multiple wildcards with unlimited repetitions, which allows context-dependent attackers to cause a denial of service (CPU consumption) via a crafted ASCII file that triggers a large amount of backtracking, as demonstrated via a file with many newline characters.
Vulnerability category: Denial of service
Threat overview for CVE-2013-7345
Top countries where our scanners detected CVE-2013-7345
Top open port discovered on systems with this issue
80
IPs affected by CVE-2013-7345 158,100
Threat actors abusing to this issue?
Yes
Find out if you* are
affected by CVE-2013-7345!
*Directly or indirectly through your vendors, service providers and 3rd parties.
Powered by
attack surface intelligence
from SecurityScorecard.
Exploit prediction scoring system (EPSS) score for CVE-2013-7345
0.44%
Probability of exploitation activity in the next 30 days
EPSS Score History
~ 72 %
Percentile, the proportion of vulnerabilities that are scored at or less