23 matches found
UBUNTU-CVE-2017-12627
In Apache Xerces-C XML Parser library before 3.2.1, processing of external DTD paths can result in a null pointer dereference under certain conditions...
Cisco TelePresence Video Communication Server Expressway External DTD File Read Vulnerability
Cisco TelePresence Video Communication Server is a video conferencing solution that integrates h.323 and SIP. A security vulnerability exists in Cisco TelePresence Video Communication Server Expressway that allows a remote authenticated user to send a special XML file containing external DTD...
PT-2008-5344 · Microsoft · Xml Core Services
Name of the Vulnerable Software and Affected Versions: Microsoft XML Core Services versions 3.0 through 4.0 Description: The issue allows remote attackers to obtain sensitive information from another domain via a crafted XML document, related to improper error checks for external DTDs...