The vulnerability of the LabelDict::Load function in the XML data compression tool Xmill allows a attacker to execute arbitrary code.

The vulnerability of the LabelDict::Load function in the XML data compression tool Xmill is related to the execution of operations outside the buffer boundaries in memory. Exploiting this vulnerability could allow a remote attacker to execute arbitrary code...

CVE-2021-21830

A heap-based buffer overflow vulnerability exists in the XML Decompression LabelDict::Load functionality of AT&T Labs’ Xmill 0.7. A specially crafted XMI file can lead to remote code execution. An attacker can provide a malicious file to trigger this vulnerability...

AT&T Labs Xmill 缓冲区错误漏洞

AT&T Labs Xmill is a new tool for efficient compression of XML data from AT&T Labs, USA. A security vulnerability exists in the XML Decompression LabelDict::Load function in AT&T Labs Xmill version 0.7. An attacker could exploit the vulnerability to remotely execute code...

PT-2021-7816 · Xmill · Xmill

Name of the Vulnerable Software and Affected Versions: Xmill version 0.7 Description: A heap-based buffer overflow issue exists in the XML Decompression LabelDict::Load functionality. This can be triggered by a specially crafted XMI file, potentially leading to remote code execution. An attacker...