[Forgot Password]
Login  Register Subscribe

23631

 
 

115038

 
 

96125

 
 

909

 
 

78020

 
 

109

Paid content will be excluded from the download.


Download | Alert*


CVE-2014-3660
parser.c in libxml2 before 2.9.2 does not properly prevent entity expansion even when entity substitution has been disabled, which allows context-dependent attackers to cause a denial of service (CPU consumption) via a crafted XML document containing a large number of nested entity references, a var ...

CVE-2015-1819
The xmlreader in libxml allows remote attackers to cause a denial of service (memory consumption) via crafted XML data, related to an XML Entity Expansion (XEE) attack.

*OVAL
oval:org.secpod.oval:def:1501101
CPE    127
cpe:/a:libxml2:libxml2
cpe:/a:xmlsoft:libxml2:2.7.8
cpe:/a:xmlsoft:libxml2:2.6.31
cpe:/a:xmlsoft:libxml2:2.6.21
...

© 2013 SecPod Technologies