The vulnerability of the ParseAttribs function in the XML data compression tool Xmill allows a attacker to execute arbitrary code.

The vulnerability of the ParseAttribs function in the XML data compression tool Xmill is related to memory corruption caused by a specially crafted XML file. Exploiting this vulnerability allows an attacker to execute arbitrary code remotely...

CVE-2021-21810

A memory corruption vulnerability exists in the XML-parsing ParseAttribs functionality of AT&T Labs’ Xmill 0.7. A specially crafted XML file can lead to a heap buffer overflow. An attacker can provide a malicious file to trigger this vulnerability...

CVE-2021-21810

CVE-2021-21810 affects AT&T Labs’ Xmill 0.7; a memory corruption heap-based buffer overflow exists in the XML-parsing ParseAttribs functionality when processing malicious XML, potentially enabling remote code execution. Public references (e.g., Red Hat and CISA-ICS materials) describe this class ...

PT-2021-7764 · Xmill · Xmill

Name of the Vulnerable Software and Affected Versions: Xmill version 0.7 Description: A memory corruption issue exists in the XML-parsing ParseAttribs functionality. This can be triggered by a specially crafted XML file, leading to a heap buffer overflow. An attacker can exploit this by providing...