2 matches found
CVE-2011-1757
DJabberd 0.84 and earlier does not properly detect recursion during entity expansion, which allows remote attackers to cause a denial of service memory and CPU consumption via a crafted XML document containing a large number of nested entity references, a similar issue to CVE-2003-1564...
CVE-2011-1757
CVE-2011-1757 affects DJabberd 0.84 and earlier. The issue is a recursion/entity expansion flaw in XML processing that can be exploited remotely to cause memory and CPU exhaustion (DoS) via a crafted XML document with deeply nested entity references. The description notes this is similar to CVE-2...