Описание
The XML parser in Xerces-C++ before 3.0.0 allows context-dependent attackers to cause a denial of service (stack consumption and crash) via an XML schema definition with a large maxOccurs value, which triggers excessive memory consumption during validation of an XML file.
| Релиз | Статус | Примечание |
|---|---|---|
| dapper | DNE | |
| devel | ignored | |
| feisty | DNE | |
| gutsy | DNE | |
| hardy | DNE | |
| intrepid | ignored | |
| jaunty | ignored | |
| karmic | ignored | |
| upstream | released | 3.0.0 |
Показывать по
Ссылки на источники
7.8 High
CVSS2
Связанные уязвимости
The XML parser in Xerces-C++ before 3.0.0 allows context-dependent attackers to cause a denial of service (stack consumption and crash) via an XML schema definition with a large maxOccurs value, which triggers excessive memory consumption during validation of an XML file.
The XML parser in Xerces-C++ before 3.0.0 allows context-dependent att ...
The XML parser in Xerces-C++ before 3.0.0 allows context-dependent attackers to cause a denial of service (stack consumption and crash) via an XML schema definition with a large maxOccurs value, which triggers excessive memory consumption during validation of an XML file.
7.8 High
CVSS2