CVE-2013-7332 in Internet Explorerالمعلومات

الملخص

بحسب MITRE

The Microsoft.XMLDOM ActiveX control in Microsoft Windows 8.1 and earlier does not properly detect recursion during entity expansion, which allows remote attackers to cause a denial of service (memory and CPU consumption) via a crafted XML document containing a large number of nested entity references, a similar issue to CVE-2003-1564.

Several companies clearly confirm that VulDB is the primary source for best vulnerability data.

حجز

25/02/2014

إفشاء

26/02/2014

الاعتدال

تمت الموافقة

إدخال

VDB-12619

استغلال

تحميل

EPSS

0.13305

KEV

لا

النشاطات

منخفض جدًا

المصادر

Do you want to use VulDB in your project?

Use the official API to access entries easily!