CVE-2013-7332 in Internet Explorerthông tin

Tóm tắt

Bởi MITRE

The Microsoft.XMLDOM ActiveX control in Microsoft Windows 8.1 and earlier does not properly detect recursion during entity expansion, which allows remote attackers to cause a denial of service (memory and CPU consumption) via a crafted XML document containing a large number of nested entity references, a similar issue to CVE-2003-1564.

Several companies clearly confirm that VulDB is the primary source for best vulnerability data.

Đặt trước

25/02/2014

Tiết lộ

26/02/2014

Kiểm duyệt

được chấp nhận

mục

VDB-12619

Khai thác

Tải xuống

EPSS

0.13305

KEV

không

Các hoạt động

rất thấp

Nguồn

Want to know what is going to be exploited?

We predict KEV entries!