[Forgot Password]
Login  Register Subscribe

23631

 
 

115038

 
 

96174

 
 

909

 
 

78077

 
 

109

Paid content will be excluded from the download.


Download | Alert*


CVE-2014-8090
The REXML parser in Ruby 1.9.x before 1.9.3 patchlevel 551, 2.0.x before 2.0.0 patchlevel 598, and 2.1.x before 2.1.5 allows remote attackers to cause a denial of service (CPU and memory consumption) a crafted XML document containing an empty string in an entity that is used in a large number of nes ...

CVE-2014-8080
The REXML parser in Ruby 1.9.x before 1.9.3-p550, 2.0.x before 2.0.0-p594, and 2.1.x before 2.1.4 allows remote attackers to cause a denial of service (memory consumption) via a crafted XML document, aka an XML Entity Expansion (XEE) attack.

*OVAL
oval:org.secpod.oval:def:1500813
CPE    23
cpe:/a:ruby-lang:ruby:1.9.3:p392
cpe:/a:ruby-lang:ruby:1.9.3:p426
cpe:/a:ruby-lang:ruby:1.9.3:p429
cpe:/a:ruby-lang:ruby:1.9.3:p383
...

© 2013 SecPod Technologies