Lucene search

K
prionPRIOn knowledge basePRION:CVE-2015-8317
HistoryDec 15, 2015 - 9:59 p.m.

Heap overflow

2015-12-1521:59:00
PRIOn knowledge base
www.prio-n.com
10

AI Score

6.4

Confidence

Low

EPSS

0.01

Percentile

83.3%

The xmlParseXMLDecl function in parser.c in libxml2 before 2.9.3 allows context-dependent attackers to obtain sensitive information via an (1) unterminated encoding value or (2) incomplete XML declaration in XML data, which triggers an out-of-bounds heap read.

References