2 matches found
CVE-2021-28040
CVE-2021-28040 describes an uncontrolled recursion in OSSEC 3.6.0 due to unrestrained recursion in os_xml.c when processing a large number of opening/closing XML tags. The recursion in _ReadElem can cause a segmentation fault once unmapped memory is reached. This entry provides no exploit details...
CVE-2021-28040
An issue was discovered in OSSEC 3.6.0. An uncontrolled recursion vulnerability in osxml.c occurs when a large number of opening and closing XML tags is used. Because recursion is used in ReadElem without restriction, an attacker can trigger a segmentation fault once unmapped memory is reached...