11 matches found
EUVD-2011-1756
Malware in sbrugna...
EUVD-2011-2195
Malware in sbrugna...
CVE-2011-1757
DJabberd 0.84 and earlier does not properly detect recursion during entity expansion, which allows remote attackers to cause a denial of service memory and CPU consumption via a crafted XML document containing a large number of nested entity references, a similar issue to CVE-2003-1564...
CVE-2011-2206
XMLParser.pm in DJabberd before 0.85 allows remote authenticated users to read arbitrary files, and possibly send HTTP requests to intranet servers or cause a denial of service CPU and memory consumption, via an XML external entity declaration in conjunction with an entity reference, a different...
CVE-2011-2206
XMLParser.pm in DJabberd before 0.85 allows remote authenticated users to read arbitrary files, and possibly send HTTP requests to intranet servers or cause a denial of service CPU and memory consumption, via an XML external entity declaration in conjunction with an entity reference, a different...
CVE-2011-2206
CVE-2011-2206 affects DJabberd up to version 0.84 via DJabberd’s XMLParser.pm. It allows remote authenticated users to read arbitrary files and potentially contact intranet hosts or trigger denial of service through XML external entities with nested references. The description indicates the issue...
CVE-2011-2206
XMLParser.pm in DJabberd before 0.85 allows remote authenticated users to read arbitrary files, and possibly send HTTP requests to intranet servers or cause a denial of service CPU and memory consumption, via an XML external entity declaration in conjunction with an entity reference, a different...
CVE-2011-1757
DJabberd 0.84 and earlier does not properly detect recursion during entity expansion, which allows remote attackers to cause a denial of service memory and CPU consumption via a crafted XML document containing a large number of nested entity references, a similar issue to CVE-2003-1564...
Code injection
DJabberd 0.84 and earlier does not properly detect recursion during entity expansion, which allows remote attackers to cause a denial of service memory and CPU consumption via a crafted XML document containing a large number of nested entity references, a similar issue to CVE-2003-1564...
CVE-2011-1757
DJabberd 0.84 and earlier does not properly detect recursion during entity expansion, which allows remote attackers to cause a denial of service memory and CPU consumption via a crafted XML document containing a large number of nested entity references, a similar issue to CVE-2003-1564...
CVE-2011-1757
CVE-2011-1757 affects DJabberd 0.84 and earlier. The issue is a recursion/entity expansion flaw in XML processing that can be exploited remotely to cause memory and CPU exhaustion (DoS) via a crafted XML document with deeply nested entity references. The description notes this is similar to CVE-2...