11 matches found
EUVD-2018-2934
Malware in sbrugna...
Denial Of Service (DoS)
ethyca-fides is vulnerable to Denial Of Service DoS. The vulnerability exists due to the lack of validation checks for SVGs in the savetemplate function of connectorregistryservice.py, which allows an admin authenticated attacker to crash the application by uploading a zip file containing a...
Code injection
redhat-certification 7 does not properly restrict the number of recursive definitions of entities in XML documents, allowing an unauthenticated user to run a "Billion Laugh Attack" by replying to XMLRPC methods when getting the status of an host...
PT-2021-8694 · Red Hat · Redhat-Certification
Name of the Vulnerable Software and Affected Versions: redhat-certification version 7 Description: The issue allows an unauthenticated user to perform a "Billion Laugh Attack" by replying to XMLRPC methods when getting the status of a host, due to the improper restriction of recursive definitions...
FreeBSD : texproc/expat2 -- billion laugh attack (5fa90ee6-bc9e-11eb-a287-e0d55e2a8bf9)
Kurt Seifried reports : So here are the CVE's for the two big ones, libxml2 and expat. Both are affected by the expansion of internal entities which can be used to consume resources and external entities which can cause a denial of service against other services, be used to port scan, etc.. A...
Billion Laugh Attack
libxml2:sid is vulnerable to billion laugh attack via parameter entities expansion and following the line of the billion laugh attack...
Topcoder: SVG file upload leads to XML injection
Summary: Upload Avatar option allows the user to upload image/ . Thus enabling the upload of many file formats including SVG files MIME type: image/svg+xml SVG files are XML based graphics files in 2D images. Thus, this opens up an attack vector to upload specially crafted malicious SVG files. Th...
Billion Laugh Attack in https://sites.google.com
tl;dr https://sites.google.com suffered from a Billion Laugh Attack vulnerability that made the containerized environment to crash with a single invocation. Introduction Few months ago I applied for a talk at a security conference titled So you wanna be a Bug Bounty Hunter but it was rejected :...
Denial Of Service (DoS)
python-openid is vulnerable to Denial of Service DoS attacks. The vulnerability exists due to the usage of an insecure Yardis XRDS parser which contains a series of weaknesses that allows XML attacks such as the Billion Laugh attack...
Denial Of Service (DoS) Via Billion Laugh Attack
resteasy is vulnerable to XML entity denial-of-service DoS, also known as billion laugh attacks. The attacks are possible because it bypasses the entity expansion limit set by JAXP when XXE is disabled...
texproc/expat2 -- billion laugh attack
Kurt Seifried reports: So here are the CVE's for the two big ones, libxml2 and expat. Both are affected by the expansion of internal entities which can be used to consume resources and external entities which can cause a denial of service against other services, be used to port scan, etc.. A...