Lucene search
K

187 matches found

RedHat Linux
RedHat Linux
added 2009/06/16 10:3 p.m.6 views

apr-util billion laughs attack

The expat XML parser in the aprxml interface in xml/aprxml.c in Apache APR-util before 1.3.7, as used in the moddav and moddavsvn modules in the Apache HTTP Server, allows remote attackers to cause a denial of service memory consumption via a crafted XML document containing a large number of nest...

7.5CVSS7AI score0.52988EPSS
Exploits2References4
OSV
OSV
added 2009/06/08 1:0 a.m.11 views

CVE-2009-1955

The expat XML parser in the aprxml interface in xml/aprxml.c in Apache APR-util before 1.3.7, as used in the moddav and moddavsvn modules in the Apache HTTP Server, allows remote attackers to cause a denial of service memory consumption via a crafted XML document containing a large number of nest...

7.5CVSS6.8AI score
Exploits0References90
Prion
Prion
added 2009/06/08 1:0 a.m.31 views

Design/Logic Flaw

The expat XML parser in the aprxml interface in xml/aprxml.c in Apache APR-util before 1.3.7, as used in the moddav and moddavsvn modules in the Apache HTTP Server, allows remote attackers to cause a denial of service memory consumption via a crafted XML document containing a large number of nest...

5CVSS6.7AI score0.52988EPSS
Exploits2References60Affected Software7
OSV
OSV
added 2009/06/08 1:0 a.m.2 views

DEBIAN-CVE-2009-1955

The expat XML parser in the aprxml interface in xml/aprxml.c in Apache APR-util before 1.3.7, as used in the moddav and moddavsvn modules in the Apache HTTP Server, allows remote attackers to cause a denial of service memory consumption via a crafted XML document containing a large number of nest...

7.5CVSS8.4AI score0.52988EPSS
Exploits2References1
Prion
Prion
added 2008/02/06 9:0 p.m.18 views

Xxe

The XML parsing code in Sun Java Runtime Environment JDK and JRE 6 Update 3 and earlier processes external entity references even when the "external general entities" property is false, which allows remote attackers to conduct XML external entity XXE attacks and cause a denial of service or acces...

7.8CVSS6.9AI score0.0343EPSS
Exploits0References18Affected Software2
NVD
NVD
added 2008/02/06 9:0 p.m.25 views

CVE-2008-0628

The XML parsing code in Sun Java Runtime Environment JDK and JRE 6 Update 3 and earlier processes external entity references even when the "external general entities" property is false, which allows remote attackers to conduct XML external entity XXE attacks and cause a denial of service or acces...

7.8CVSS6.7AI score0.0343EPSS
Exploits0References18
CVE
CVE
added 2008/02/06 8:0 p.m.95 views

CVE-2008-0628

CVE-2008-0628 affects Sun Java Runtime Environment (JRE/JDK) 6 Update 3 and earlier. The XML parsing code processes external entity references even when the “external general entities” property is false, enabling an XXE attack that can cause denial of service or allow access to restricted resourc...

7.8CVSS6.5AI score0.0343EPSS
Exploits0References18Affected Software2
Rows per page
Query Builder