CVE-2013-1821

2013-04-09T21:55:00
ID CVE-2013-1821
Type cve
Reporter secalert@redhat.com
Modified 2016-12-08T03:03:00

Description

lib/rexml/text.rb in the REXML parser in Ruby before 1.9.3-p392 allows remote attackers to cause a denial of service (memory consumption and crash) via crafted text nodes in an XML document, aka an XML Entity Expansion (XEE) attack.