Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

nvd логотип

CVE-2009-1885

Опубликовано: 11 авг. 2009
Источник: nvd
CVSS2: 4.3
EPSS Средний

Описание

Stack consumption vulnerability in validators/DTD/DTDScanner.cpp in Apache Xerces C++ 2.7.0 and 2.8.0 allows context-dependent attackers to cause a denial of service (application crash) via vectors involving nested parentheses and invalid byte values in "simply nested DTD structures," as demonstrated by the Codenomicon XML fuzzing framework.

Ссылки

Уязвимые конфигурации

Конфигурация 1

Одно из

cpe:2.3:a:apache:xerces-c\+\+:2.7.0:*:*:*:*:*:*:*
cpe:2.3:a:apache:xerces-c\+\+:2.8.0:*:*:*:*:*:*:*

EPSS

Процентиль: 94%
0.14118
Средний

4.3 Medium

CVSS2

Дефекты

CWE-119

Связанные уязвимости

ubuntu логотип

CVE-2009-1885

ubuntu
больше 16 лет назад

Stack consumption vulnerability in validators/DTD/DTDScanner.cpp in Apache Xerces C++ 2.7.0 and 2.8.0 allows context-dependent attackers to cause a denial of service (application crash) via vectors involving nested parentheses and invalid byte values in "simply nested DTD structures," as demonstrated by the Codenomicon XML fuzzing framework.

redhat логотип

CVE-2009-1885

redhat
больше 16 лет назад

Stack consumption vulnerability in validators/DTD/DTDScanner.cpp in Apache Xerces C++ 2.7.0 and 2.8.0 allows context-dependent attackers to cause a denial of service (application crash) via vectors involving nested parentheses and invalid byte values in "simply nested DTD structures," as demonstrated by the Codenomicon XML fuzzing framework.

debian логотип

CVE-2009-1885

debian
больше 16 лет назад

Stack consumption vulnerability in validators/DTD/DTDScanner.cpp in Ap ...

github логотип

GHSA-m76p-wpqx-3m7x

github
почти 4 года назад

Stack consumption vulnerability in validators/DTD/DTDScanner.cpp in Apache Xerces C++ 2.7.0 and 2.8.0 allows context-dependent attackers to cause a denial of service (application crash) via vectors involving nested parentheses and invalid byte values in "simply nested DTD structures," as demonstrated by the Codenomicon XML fuzzing framework.

EPSS

Процентиль: 94%
0.14118
Средний

4.3 Medium

CVSS2

Дефекты

CWE-119