Lucene search
Arch LinuxASA-201503-19HistoryMar 20, 2015 - 12:00 a.m.
xerces-c: denial of service
2015-03-2000:00:00
Arch Linux
lists.archlinux.org
15
5 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:N/I:N/A:P
0.039 Low
EPSS
Percentile
91.0%
- CVE-2015-0252 (denial of service)
The Xerces-C XML parser mishandles certain kinds of malformed input
documents, resulting in a segmentation fault during a parse operation.
The bug does not appear to allow for remote code execution, but is a
denial of service attack that in many applications may allow for an
unauthenticated attacker to supply malformed input and cause a crash.
Related
fedora
fedora
[SECURITY] Fedora 21 Update: mingw-xerces-c-3.1.1-11.fc21
2015-03-30 07:09:58
[SECURITY] Fedora 20 Update: xerces-c-3.1.1-6.fc20
2015-03-30 07:11:04
[SECURITY] Fedora 20 Update: mingw-xerces-c-3.1.1-9.fc20
2015-03-30 07:08:16
nessus
nessus
Debian DLA-181-1 : xerces-c security update
2015-03-30 00:00:00
Fedora 20 : xerces-c-3.1.1-6.fc20 (2015-4285)
2015-03-31 00:00:00
Scientific Linux Security Update : xerces-c on SL7.x x86_64 (20150629)
2015-07-06 00:00:00
packetstorm
packetstorm
Apache Xerces-C XML Parser Denial Of Service
2015-05-05 00:00:00
openvas
openvas
Fedora Update for mingw-xerces-c FEDORA-2015-4228
2015-03-31 00:00:00
Fedora Update for xerces-c FEDORA-2015-4285
2015-03-31 00:00:00
Debian: Security Advisory (DLA-181-1)
2023-03-08 00:00:00
mageia
mageia
Updated xerces-c packages fix security vulnerabilities
2015-04-10 01:44:14
redhat
redhat
(RHSA-2015:1193) Moderate: xerces-c security update
2015-06-29 00:00:00
ubuntucve
ubuntucve
CVE-2015-0252
2015-03-24 00:00:00
debian
debian
[SECURITY] [DLA 181-1] xerces-c security update
2015-03-27 21:14:56
[SECURITY] [DSA 3199-1] xerces-c security update
2015-03-20 18:36:40
[SECURITY] [DSA 3199-1] xerces-c security update
2015-03-20 18:36:40
securityvulns
securityvulns
Apache Xerces-C DoS
2015-03-21 00:00:00
Xerces-C Security Advisory [CVE-2015-0252]
2015-03-21 00:00:00
prion
prion
Design/Logic Flaw
2015-03-24 17:59:00
osv
osv
xerces-c - security update
2015-03-27 00:00:00
cve
cve
CVE-2015-0252
2015-03-24 17:59:00
debiancve
debiancve
CVE-2015-0252
2015-03-24 17:59:00
exploitpack
exploitpack
Apache Xerces-C XML Parser 3.1.2 - Denial of Service (PoC)
2015-05-04 00:00:00
centos
centos
xerces security update
2015-06-29 16:37:38
zdt
zdt
Apache Xerces-C XML Parser < 3.1.2 - DoS POC
2015-05-05 00:00:00
oraclelinux
oraclelinux
xerces-c security update
2015-06-29 00:00:00
kaspersky
kaspersky
KLA10496 Denial of service vulnerability in Apache Xerces
2015-03-24 00:00:00
exploitdb
exploitdb
Apache Xerces-C XML Parser < 3.1.2 - Denial of Service (PoC)
2015-05-04 00:00:00
oracle
oracle
Oracle Critical Patch Update - October 2018
2018-12-18 00:00:00
5 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:N/I:N/A:P
0.039 Low
EPSS
Percentile
91.0%
Related for ASA-201503-19