Lucene search
K

8 matches found

NVD
NVD
added 2013/08/20 10:55 p.m.19 views

CVE-2013-2210

Heap-based buffer overflow in the XML Signature Reference functionality in Apache Santuario XML Security for C++ aka xml-security-c before 1.7.2 allows context-dependent attackers to cause a denial of service crash and possibly execute arbitrary code via malformed XPointer expressions. NOTE: this...

7.5CVSS7.8AI score0.06018EPSS
Exploits1References6
OSV
OSV
added 2013/08/20 10:55 p.m.2 views

DEBIAN-CVE-2013-2210

Heap-based buffer overflow in the XML Signature Reference functionality in Apache Santuario XML Security for C++ aka xml-security-c before 1.7.2 allows context-dependent attackers to cause a denial of service crash and possibly execute arbitrary code via malformed XPointer expressions. NOTE: this...

7.5CVSS7.8AI score0.06018EPSS
Exploits1References1
UbuntuCve
UbuntuCve
added 2013/08/20 10:55 p.m.31 views

CVE-2013-2210

Heap-based buffer overflow in the XML Signature Reference functionality in Apache Santuario XML Security for C++ aka xml-security-c before 1.7.2 allows context-dependent attackers to cause a denial of service crash and possibly execute arbitrary code via malformed XPointer expressions. NOTE: this...

7.5CVSS6.4AI score0.06018EPSS
Exploits1References2
CVE
CVE
added 2013/08/20 10:0 p.m.77 views

CVE-2013-2210

CVE-2013-2210: Heap-based buffer overflow in the XML Signature Reference functionality of Apache Santuario XML Security for C++ (xml-security-c) prior to 1.7.2. Causes DoS (crash) and potentially arbitrary code execution via malformed XPointer expressions, stemming from an incorrect fix for CVE-2...

7.5CVSS7.9AI score0.06018EPSS
Exploits1References6Affected Software1
securityvulns
securityvulns
added 2013/07/01 12:0 a.m.57 views

CVE-2013-2210

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA512 CVE-2013-2210: Apache Santuario XML Security for C++ contains a heap overflow during XPointer evaluation Severity: Critical Vendor: The Apache Software Foundation Versions Affected: Apache Santuario XML Security for C++ library versions prior to...

7.5CVSS0.7AI score0.08031EPSS
Exploits1
securityvulns
securityvulns
added 2013/07/01 12:0 a.m.58 views

[SECURITY] [DSA 2717-1] xml-security-c security update

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA512 - ------------------------------------------------------------------------- Debian Security Advisory DSA-2717-1 [email protected] http://www.debian.org/security/ Salvatore Bonaccorso June 28, 2013 http://www.debian.org/security/faq -...

7.5CVSS2.6AI score0.08031EPSS
Exploits1
Debian
Debian
added 2013/06/28 3:17 p.m.32 views

[SECURITY] [DSA 2717-1] xml-security-c security update

------------------------------------------------------------------------- Debian Security Advisory DSA-2717-1 [email protected] http://www.debian.org/security/ Salvatore Bonaccorso June 28, 2013 http://www.debian.org/security/faq -...

7.5CVSS6.4AI score0.08031EPSS
Exploits1
seebug.org
seebug.org
added 2013/06/28 12:0 a.m.32 views

Apache Santuario XML Security for C++ 堆缓冲区溢出漏洞

BUGTRAQ ID: 60817 CVECAN ID: CVE-2013-2210 Apache Santuario是实现XML的主要安全标准。 Apache Santuario XML Security for C++ 1.7.2之前版本在XPointer求值中存在堆缓冲区溢出漏洞,成功利用后可允许远程攻击者在受影响应用上下文中执行任意代码。此漏洞是在CVE-2013-2154修复中引入的,源于XML签名引用处理代码中的畸形XPointer表达式处理。 0 Apache Group XML Security for C++ 1.6.1 Apache Group XML Securit...

7.5CVSS0.08031EPSS
Exploits1
Rows per page
Query Builder