Denial Of Service (DoS)

libexpat.so is vulnerable to Denial Of Service DoS. The vulnerability is due to the improper implementation of the XMLResumeParser function, allowing XMLStopParser to stop or suspend an unstarted parser...

Denial Of Service (DOS)

libexpat.so is vulnerable to Denial Of Service DOS. The vulnerability is caused due to a defect within xmlparse.c that does not eject a negative length for XMLParseBuffer...

Use After Free

libexpat.so is vulnerable to use-after-free. The vulnerability exists due to a lack of entity value validations in the XMLParserFree parameter of the parserCreate function in xmlparse.c. An attacker could exploit it to lead to memory consumption resulting in an application crash...

Use-After-Free

libexpat.so is vulnerable to use-after-free. The vulnerability is possible because the raw names will be pointing into the stored entity value instead of the parse buffer in doContent method of the file xmlparse.c, which doesn't release the consumed memory...

Denial Of Service (DoS)

libexpat.so is vulnerable to denial of service. The vulnerability exists due to the heap overflow in the resolvejobrules function of solver.c, allowing an attacker to cause an application crash...

Denial Of Service (DoS)

libexpat.so is vulnerable to denial of service. An attacker can trigger stack exhaustion in the buildmodel function of xmlparse.c via a large nesting depth in the DTD element, leading to an application crash...

Denial Of Service (DoS)

libexpat.so is vulnerable to denial of service. The vulnerability exists due to the integer overflow in the copyString function of xmlparse.c as it is only used for encoding strings supplied by the library user, allowing an attacker to cause an application crash...

Cross-Site Scripting (XSS)

libexpat.so is vulnerable to cross-site scripting. The vulnerability exists in CHECKNAMECASE and CHECKNMSTRTCASES functions of xmltokimpl.c because the conditions are not properly validated which allows an attacker to inject and execute javascript...

Integer Overflow

libexpat.so is vulnerable to integer overflow. The vulnerability exists in the doProlog function in the xmlparse.c file, allowing an attacker to cause an application crash...

Integer Overflow

libexpat.so is vulnerable to denial of serviceDOS attacks. The vulnerability exists due to the integer overflow in the addBinding of xmlparse.c, allowing an attacker to cause an application crash...

Integer Overflow

libexpat.so is vulnerable to Integer Overflow. The vulnerability exists because the defineAttribute function of xmlparse.c doesn't check the input length which allows an attacker to leverage an overflow causing an application crash...

Integer Overflow

libexpat.so is vulnerable to Integer Overflow. The vulnerability exists in the nextScaffoldPart function in the xmlparse.c' file, allowing an attacker to cause an application crash...

Denial Of Service (DoS)

libexpat.so is vulnerable to denial of service. The vulnerability exists due to the integer overflow in the lookup of xmlparse.c, allowing an attacker to cause an application crash...

Denial Of Service (DoS)

libexpat.so is vulnerable to denial of service. The vulnerability exists due to the integer overflow in the buildmodel of xmlparse.c, allowing an attacker to cause an application crash...

Denial Of Service (DoS)

libexpat.so is vulnerable to denial of service. The vulnerability exists due to the integer overflow in the mgroupSize of xmlparse.c, allowing an attacker to cause an application crash...

Denial Of Service (Dos)

libexpat.so is vulnerable to denial of service. A heap-based buffer overflow occurs when an attacker sends a malicious XML which switches the DTD parsing to document parsing immaturely, leading to repeated calls of XMLGetCurrentLineNumber or XMLGetCurrentColumnNumber function that results in an...