6 matches found
CVE-2013-2153
The XML digital signature functionality xsec/dsig/DSIGReference.cpp in Apache Santuario XML Security for C++ aka xml-security-c before 1.7.1 allows context-dependent attackers to reuse signatures and spoof arbitrary content via crafted Reference elements in the Signature, aka "XML Signature Bypas...
CVE-2013-2153
The XML digital signature functionality xsec/dsig/DSIGReference.cpp in Apache Santuario XML Security for C++ aka xml-security-c before 1.7.1 allows context-dependent attackers to reuse signatures and spoof arbitrary content via crafted Reference elements in the Signature, aka "XML Signature Bypas...
CVE-2013-2153
The CVE-2013-2153 issue affects Apache Santuario XML Security for C++ (xml-security-c) prior to 1.7.1. The vulnerability lies in the XML digital signature handling (DSIGReference.cpp), which allows context-dependent attackers to reuse signatures and spoof arbitrary content via crafted Reference e...
CVE-2013-2153: Apache Santuario C++ signature bypass vulnerability
CVE-2013-2153: Apache Santuario XML Security for C++ contains an XML Signature Bypass issue Severity: Critical Vendor: The Apache Software Foundation Versions Affected: Apache Santuario XML Security for C++ library versions prior to V1.7.1 Description: The implementation of XML digital signatures...
DSA-2710-1 xml-security-c - several
Bulletin has no description...
Debian: Security Advisory (DSA-2710-1)
The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2013 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...