Perl-Compatible Regular Expression (PCRE) library before 7.3 allows context-dependent attackers to cause a denial of service (crash) and possibly execute arbitrary code via regex patterns containing unmatched "\Q\E" sequences with orphan "\E" codes.
| Product | Vendor | Version |
|---|---|---|
| n/a | n/a | >= 7.2rc1, < 7.2.2 |
| n/a | n/a | < 10.0.17763.6054 |