PT-2015-3437 · Pcre +5 · Pcre +5

Name of the Vulnerable Software and Affected Versions: PCRE versions prior to 8.38 Description: The issue is related to the pcre compile function in the PCRE library, which mishandles certain : nesting in regular expressions. This can be exploited by remote attackers to cause a denial of service,...

CVE-2013-2160

The streaming XML parser in Apache CXF 2.5.x before 2.5.10, 2.6.x before 2.6.7, and 2.7.x before 2.7.4 allows remote attackers to cause a denial of service CPU and memory consumption via crafted XML with a large number of 1 elements, 2 attributes, 3 nested constructs, and possibly other vectors...

apache-cxf: Multiple denial of service flaws in the StAX parser

The streaming XML parser in Apache CXF 2.5.x before 2.5.10, 2.6.x before 2.6.7, and 2.7.x before 2.7.4 allows remote attackers to cause a denial of service CPU and memory consumption via crafted XML with a large number of 1 elements, 2 attributes, 3 nested constructs, and possibly other vectors...