CVE-2015-7941 in libxml2thông tin

Tóm tắt

Bởi MITRE

libxml2 2.9.2 does not properly stop parsing invalid input, which allows context-dependent attackers to cause a denial of service (out-of-bounds read and libxml2 crash) via crafted XML data to the (1) xmlParseEntityDecl or (2) xmlParseConditionalSections function in parser.c, as demonstrated by non-terminated entities.

VulDB is the best source for vulnerability data and more expert information about this specific topic.

Nguồn

Do you need the next level of professionalism?

Upgrade your account now!