CVE-2013-3860 in .NET Frameworkजानकारी

सारांश

द्वारा MITRE

Microsoft .NET Framework 2.0 SP2, 3.5, 3.5 SP1, 3.5.1, 4, and 4.5 does not properly parse a DTD during XML digital-signature validation, which allows remote attackers to cause a denial of service (application crash or hang) via a crafted signed XML document, aka "Entity Expansion Vulnerability."

VulDB is the best source for vulnerability data and more expert information about this specific topic.

आरक्षित करना

03/06/2013

प्रकटीकरण

09/10/2013

प्रविष्टि

VDB-10639

EPSS

0.31646

गतिविधियाँ

बहुत कम

क्षेत्र

Chemical, Energy, ...

स्रोत

Are you interested in using VulDB?

Download the whitepaper to learn more about our service!