15 matches found
SuSE 10 Security Update : perl-HTML-Parser (ZYPP Patch Number 6622)
Specially crafted HTML documents could cause perl-HTML-Parser to run into an endless loop. CVE-2009-3627 %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The text description of this plugin is C Novell, Inc. include'deprecatednasllevel.inc'; include'compat.inc'; if description scriptid49915;...
Debian DSA-1923-1 : libhtml-parser-perl - denial of service
A denial of service vulnerability has been found in libhtml-parser-perl, a collection of modules to parse HTML in text documents which is used by several other projects like e.g. SpamAssassin. Mark Martinec discovered that the decodeentities function will get stuck in an infinite loop when parsin...
SLES11: Security update for perl-HTML-Parser
The remote host is missing updates to packages that affect the security of your system. One or more of the following packages are affected: perl-HTML-Parser More details may also be found by searching for the SuSE Enterprise Server 11 patch database linked in the references. SPDX-FileCopyrightTex...
SuSE 11 Security Update : perl-HTML-Parser (SAT Patch Number 1495)
Specially crafted HTML documents could cause perl-HTML-Parser to run into an endless loop. CVE-2009-3627 %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from SuSE 11 update information. The text itself is copyright C Novel...
openSUSE Security Update : perl-HTML-Parser (perl-HTML-Parser-1491)
Specially crafted HTML documents could cause perl-HTML-Parser to run into an endless loop CVE-2009-3627. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from openSUSE Security Update perl-HTML-Parser-1491. The text...
SuSE 10 Security Update : perl-HTML-Parser (ZYPP Patch Number 6621)
Specially crafted HTML documents could cause perl-HTML-Parser to run into an endless loop. CVE-2009-3627 %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The text description of this plugin is C Novell, Inc. include'deprecatednasllevel.inc'; include'compat.inc'; if description scriptid43086;...
Ubuntu USN-855-1 (libhtml-parser-perl)
The remote host is missing an update to libhtml-parser-perl announced via advisory USN-855-1. OpenVAS Vulnerability Test $Id: ubuntu8551.nasl 8616 2018-02-01 08:24:13Z cfischer $ $Id: ubuntu8551.nasl 8616 2018-02-01 08:24:13Z cfischer $ Description: Auto-generated from advisory USN-855-1...
FreeBSD Ports: p5-HTML-Parser
The remote host is missing an update to the system as announced in the referenced advisory. VID 68bda678-caab-11de-a97e-be89dfd1042e OpenVAS Vulnerability Test $ Description: Auto generated from VID 68bda678-caab-11de-a97e-be89dfd1042e Authors: Thomas Reinke Copyright: Copyright c 2009 E-Soft Inc...
HTML-Parser 'decode_entities()' Denial of Service Vulnerability
HTML-Parser is prone to a denial of service DoS vulnerability. SPDX-FileCopyrightText: 2009 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
libhtml-parser-perl vulnerability USN-855-1
No description provided by source. =========================================================== Ubuntu Security Notice USN-855-1 November 05, 2009 libhtml-parser-perl vulnerability CVE-2009-3627 =========================================================== A security issue affects the following Ubun...
Ubuntu 6.06 LTS / 8.04 LTS / 8.10 / 9.04 / 9.10 : libhtml-parser-perl vulnerability (USN-855-1)
Mark Martinec discovered that HTML::Parser incorrectly handled strings with incomplete entities. An attacker could send specially crafted input to applications that use HTML::Parser and cause a denial of service. Note that Tenable Network Security has extracted the preceding description block...
[SECURITY] [DSA 1923-1] New libhtml-parser-perl packages fix denial of service
-------------------------------------------------------------------------- Debian Security Advisory DSA-1923-1 [email protected] http://www.debian.org/security/ Nico Golde October 27th, 2009 http://www.debian.org/security/faq -...
[SECURITY] [DSA 1923-1] New libhtml-parser-perl packages fix denial of service
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 - -------------------------------------------------------------------------- Debian Security Advisory DSA-1923-1 [email protected] http://www.debian.org/security/ Nico Golde October 27th, 2009 http://www.debian.org/security/faq -...
CVE-2009-3627
The decodeentities function in util.c in HTML-Parser before 3.63 allows context-dependent attackers to cause a denial of service infinite loop via an incomplete SGML numeric character reference, which triggers generation of an invalid UTF-8 character...
CVE-2009-3627
CVE-2009-3627 affects the Perl HTML-Parser (modules) where the decode_entities() function in util.c can loop indefinitely when parsing certain incomplete SGML numeric character references, causing a denial of service. The issue occurs in HTML-Parser prior to version 3.63. Impact is a partial avai...