Computer Security
[EN] securityvulns.ru no-pyccku


DoS против библиотеки XMLTooling
Published:02.08.2015
Source:
SecurityVulns ID:14613
Type:library
Threat Level:
5/10
Description:Unhandled exception on processing XML with invalid schema.
Affected:XMLTOOLING : xmltooling 1.5
CVE:CVE-2015-0851 (XMLTooling-C before 1.5.5, as used in OpenSAML-C and Shibboleth Service Provider (SP), does not properly handle integer conversion exceptions, which allows remote attackers to cause a denial of service (crash) via schema-invalid XML data.)
Original documentdocumentDEBIAN, [SECURITY] [DSA 3321-1] xmltooling security update (02.08.2015)

About | Terms of use | Privacy Policy
© SecurityVulns, 3APA3A, Vladimir Dubrovin
Nizhny Novgorod