88 matches found
CVE-2018-1285
Apache log4net versions before 2.0.10 do not disable XML external entities when parsing log4net configuration files. This allows for XXE-based attacks in applications that accept attacker-controlled log4net configuration files...
XML External Entities (XXE)
log4net is vulnerable to XML external entity attacks. External DTDs are enabled by default and allow attackers to perform XXE attacks using malicious XML data and documents...
PT-2020-5531 · Apache +2 · Log4Net +2
Name of the Vulnerable Software and Affected Versions: Apache log4net versions prior to 2.0.10 Description: The issue is related to errors in restricting XML links to external objects XXE in the log4net logging library on the .NET Framework platform. Exploitation of this issue may allow a remote...
CVE-2006-0743
Format string vulnerability in LocalSyslogAppender in Apache log4net 1.2.9 might allow remote attackers to cause a denial of service memory corruption and termination via unknown vectors...
openSUSE 10 Security Update : log4net (log4net-2211)
This update fixes a format string exploit in the RemoteSyslogAppender of log4net. CVE-2006-0743 %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from openSUSE Security Update log4net-2211. The text description of this plugi...
Format string
Format string vulnerability in LocalSyslogAppender in Apache log4net 1.2.9 might allow remote attackers to cause a denial of service memory corruption and termination via unknown vectors...
CVE-2006-0743
Format string vulnerability in LocalSyslogAppender in Apache log4net 1.2.9 might allow remote attackers to cause a denial of service memory corruption and termination via unknown vectors...
CVE-2006-0743
CVE-2006-0743 affects Apache log4net 1.2.9 (LocalSyslogAppender) with a format string vulnerability that could cause a denial of service via memory corruption. The connected documents confirm the vulnerability in log4net 1.2.9 and describe DoS outcomes; some advisories note remediation by upgradi...