19 matches found
openSUSE 10 Security Update : Xerces-c (Xerces-c-6430)
The Xerces-c package was vulnerable to various bugs while parsing XML. CVE-2009-1885 %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from openSUSE Security Update Xerces-c-6430. The text description of this plugin is C SUS...
SuSE Security Summary SUSE-SR:2009:014
The remote host is missing updates announced in advisory SUSE-SR:2009:014. SuSE Security Summaries are short on detail when it comes to the names of packages affected by a particular bug. Because of this, while this test will detect out of date packages, it cannot tell you what bugs impact which...
Fedora Core 10 FEDORA-2009-8305 (xerces-c27)
The remote host is missing an update to xerces-c27 announced via advisory FEDORA-2009-8305. OpenVAS Vulnerability Test $Id: fcore20098305.nasl 6624 2017-07-10 06:11:55Z cfischer $ Description: Auto-generated from advisory FEDORA-2009-8305 xerces-c27 Authors: Thomas Reinke Copyright: Copyright c...
Fedora Core 10 FEDORA-2009-8350 (xerces-c)
The remote host is missing an update to xerces-c announced via advisory FEDORA-2009-8350. OpenVAS Vulnerability Test $Id: fcore20098350.nasl 6624 2017-07-10 06:11:55Z cfischer $ Description: Auto-generated from advisory FEDORA-2009-8350 xerces-c Authors: Thomas Reinke Copyright: Copyright c 2009...
Fedora Core 11 FEDORA-2009-8332 (xerces-c27)
The remote host is missing an update to xerces-c27 announced via advisory FEDORA-2009-8332. OpenVAS Vulnerability Test $Id: fcore20098332.nasl 6624 2017-07-10 06:11:55Z cfischer $ Description: Auto-generated from advisory FEDORA-2009-8332 xerces-c27 Authors: Thomas Reinke Copyright: Copyright c...
Mandrake Security Advisory MDVSA-2009:223 (xerces-c)
The remote host is missing an update to xerces-c announced via advisory MDVSA-2009:223. OpenVAS Vulnerability Test $Id: mdksa2009223.nasl 6573 2017-07-06 13:10:50Z cfischer $ Description: Auto-generated from advisory MDVSA-2009:223 xerces-c Authors: Thomas Reinke Copyright: Copyright c 2009 E-Sof...
Fedora Core 11 FEDORA-2009-8345 (xerces-c)
The remote host is missing an update to xerces-c announced via advisory FEDORA-2009-8345. OpenVAS Vulnerability Test $Id: fcore20098345.nasl 6624 2017-07-10 06:11:55Z cfischer $ Description: Auto-generated from advisory FEDORA-2009-8345 xerces-c Authors: Thomas Reinke Copyright: Copyright c 2009...
Fedora Core 10 FEDORA-2009-8350 (xerces-c)
The remote host is missing an update to xerces-c announced via advisory FEDORA-2009-8350. Note: This VT has been deprecated and is therefore no longer functional. SPDX-FileCopyrightText: 2009 E-Soft Inc. Some text descriptions might be excerpted from a referenced sources, and are Copyright C by t...
Fedora Core 11 FEDORA-2009-8332 (xerces-c27)
The remote host is missing an update to xerces-c27 announced via advisory FEDORA-2009-8332. Note: This VT has been deprecated and is therefore no longer functional. SPDX-FileCopyrightText: 2009 E-Soft Inc. Some text descriptions might be excerpted from a referenced sources, and are Copyright C by...
Fedora Core 11 FEDORA-2009-8345 (xerces-c)
The remote host is missing an update to xerces-c announced via advisory FEDORA-2009-8345. Note: This VT has been deprecated and is therefore no longer functional. SPDX-FileCopyrightText: 2009 E-Soft Inc. Some text descriptions might be excerpted from a referenced sources, and are Copyright C by t...
Fedora Core 10 FEDORA-2009-8305 (xerces-c27)
The remote host is missing an update to xerces-c27 announced via advisory FEDORA-2009-8305. Note: This VT has been deprecated and is therefore no longer functional. SPDX-FileCopyrightText: 2009 E-Soft Inc. Some text descriptions might be excerpted from a referenced sources, and are Copyright C by...
[ MDVSA-2009:223 ] xerces-c
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Mandriva Linux Security Advisory MDVSA-2009:223 http://www.mandriva.com/security/ Package : xerces-c Date : August 30, 2009 Affected: 2008.1, 2009.0, 2009.1, Enterprise Server 5.0 Problem Description: A vulnerability has been found and corrected in...
Fedora 11 : xerces-c27-2.7.0-8.fc11 (2009-8332)
This update fixes : - Bug 515515 - CVE-2009-1885 xerces-c, xerces-c27: Stack overflow when parsing recursive XML structures Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean and...
Fedora 11 : xerces-c-2.8.0-5.fc11 (2009-8345)
This update fixes : - Bug 515515 - CVE-2009-1885 xerces-c, xerces-c27: Stack overflow when parsing recursive XML structures Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean and...
Fedora 10 : xerces-c-2.8.0-5.fc10 (2009-8350)
This update fixes : - Bug 515515 - CVE-2009-1885 xerces-c, xerces-c27: Stack overflow when parsing recursive XML structures Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean and...
openSUSE Security Update : Xerces-c (Xerces-c-1204)
The Xerces-c package was vulnerable to various bugs while parsing XML. CVE-2009-1885 %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from openSUSE Security Update Xerces-c-1204. The text description of this plugin is C SUS...
openSUSE Security Update : Xerces-c (Xerces-c-1204)
The Xerces-c package was vulnerable to various bugs while parsing XML. CVE-2009-1885 %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from openSUSE Security Update Xerces-c-1204. The text description of this plugin is C SUS...
CVE-2009-1885
Stack consumption vulnerability in validators/DTD/DTDScanner.cpp in Apache Xerces C++ 2.7.0 and 2.8.0 allows context-dependent attackers to cause a denial of service application crash via vectors involving nested parentheses and invalid byte values in "simply nested DTD structures," as demonstrat...
CVE-2009-1885
The CVE-2009-1885 entry concerns a stack-consumption vulnerability in Apache Xerces-C++ (validator DTDScanner.cpp) affecting Xerces-C++ 2.7.0 and 2.8.0, enabling a context-dependent DoS (crash) via deeply nested DTD structures and invalid byte values, as demonstrated by the XML fuzzing framework....