Описание
XMLTooling-C before 1.5.5, as used in OpenSAML-C and Shibboleth Service Provider (SP), does not properly handle integer conversion exceptions, which allows remote attackers to cause a denial of service (crash) via schema-invalid XML data.
Затронутые пакеты
| Платформа | Пакет | Состояние | Рекомендация | Релиз |
|---|---|---|---|---|
| Red Hat BPM Suite 6 | xmltooling | Affected | ||
| Red Hat JBoss BRMS 6 | xmltooling | Affected | ||
| Red Hat JBoss Data Grid 6 | xmltooling | Affected | ||
| Red Hat JBoss Data Virtualization 6 | xmltooling | Affected | ||
| Red Hat JBoss Enterprise Application Platform 6 | xmltooling | Affected | ||
| Red Hat JBoss Enterprise Web Server 1 | fuse-6.0 | Affected | ||
| Red Hat JBoss Enterprise Web Server 1 | fuse-esb-7.1 | Affected | ||
| Red Hat JBoss Enterprise Web Server 1 | fuse-others | Affected | ||
| Red Hat JBoss Fuse Service Works 6 | xmltooling | Affected | ||
| Red Hat JBoss Operations Network 3 | xmltooling | Affected |
Показывать по
Дополнительная информация
Статус:
5 Medium
CVSS2
Связанные уязвимости
XMLTooling-C before 1.5.5, as used in OpenSAML-C and Shibboleth Service Provider (SP), does not properly handle integer conversion exceptions, which allows remote attackers to cause a denial of service (crash) via schema-invalid XML data.
XMLTooling-C before 1.5.5, as used in OpenSAML-C and Shibboleth Service Provider (SP), does not properly handle integer conversion exceptions, which allows remote attackers to cause a denial of service (crash) via schema-invalid XML data.
XMLTooling-C before 1.5.5, as used in OpenSAML-C and Shibboleth Servic ...
XMLTooling-C before 1.5.5, as used in OpenSAML-C and Shibboleth Service Provider (SP), does not properly handle integer conversion exceptions, which allows remote attackers to cause a denial of service (crash) via schema-invalid XML data.
5 Medium
CVSS2