Computer Security
[EN] securityvulns.ru no-pyccku


Apache libbatik XXE
Published:11.05.2015
Source:
SecurityVulns ID:14475
Type:library
Threat Level:
5/10
Description:XXE on SVG parsing.
Affected:APACHE : batik 1.7
CVE:CVE-2015-0250 (XML external entity (XXE) vulnerability in the SVG to (1) PNG and (2) JPG conversion classes in Apache Batik 1.x before 1.8 allows remote attackers to read arbitrary files or cause a denial of service via a crafted SVG file.)
Original documentdocumentUBUNTU, [USN-2548-1] Batik vulnerability (11.05.2015)

About | Terms of use | Privacy Policy
© SecurityVulns, 3APA3A, Vladimir Dubrovin
Nizhny Novgorod