Computer Security
[EN] securityvulns.ru no-pyccku


libxslt memory corruption
Published:04.06.2008
Source:
SecurityVulns ID:9046
Type:library
Threat Level:
6/10
Description:XSL file parsing memory corruption.
Affected:LIBXSLT : libxslt 1.1
CVE:CVE-2008-1767 (Buffer overflow in pattern.c in libxslt before 1.1.24 allows context-dependent attackers to cause a denial of service (crash) and possibly execute arbitrary code via an XSL style sheet file with a long XSLT "transformation match" condition that triggers a large number of steps.)
Original documentdocumentGENTOO, [ GLSA 200806-02 ] libxslt: Execution of arbitrary code (04.06.2008)

About | Terms of use | Privacy Policy
© SecurityVulns, 3APA3A, Vladimir Dubrovin
Nizhny Novgorod