Lucene search
K

27 matches found

NVD
NVD
added 2011/10/06 10:55 a.m.21 views

CVE-2011-3287

Cisco Jabber Extensible Communications Platform aka Jabber XCP 2.x through 5.4.x before 5.4.0.27581 and 5.8.x before 5.8.1.27561 does not properly detect recursion during entity expansion, which allows remote attackers to cause a denial of service memory and CPU consumption, and process crash via...

7.8CVSS7AI score0.01205EPSS
Exploits0References1
Cvelist
Cvelist
added 2011/10/06 10:0 a.m.27 views

CVE-2011-3288

Cisco Unified Presence before 8.54 does not properly detect recursion during entity expansion, which allows remote attackers to cause a denial of service memory and CPU consumption, and process crash via a crafted XML document containing a large number of nested entity references, aka Bug IDs...

7AI score0.01768EPSS
Exploits0References1
OSV
OSV
added 2011/06/21 2:52 a.m.8 views

CVE-2011-1753

expaterl.c in ejabberd before 2.1.7 and 3.x before 3.0.0-alpha-3, and exmpp before 0.9.7, does not properly detect recursion during entity expansion, which allows remote attackers to cause a denial of service memory and CPU consumption via a crafted XML document containing a large number of neste...

6.8AI score
Exploits0References12
RedHat Linux
RedHat Linux
added 2011/06/16 7:18 p.m.26 views

Low: Red Hat Security Advisory: Red Hat Network Proxy server jabberd security update

An updated jabberd package that fixes one security issue is now available for Red Hat Network Proxy 5.4.1 for Red Hat Enterprise Linux 5. The Red Hat Security Response Team has rated this update as having low security impact. A Common Vulnerability Scoring System CVSS base score, which gives a...

7.5CVSS7AI score0.03659EPSS
Exploits0References2
Prion
Prion
added 2008/08/27 8:41 p.m.26 views

Code injection

libxml2 2.6.32 and earlier does not properly detect recursion during entity expansion in an attribute value, which allows context-dependent attackers to cause a denial of service memory and CPU consumption via a crafted XML document...

4.3CVSS6AI score0.02507EPSS
Exploits1References42Affected Software11
Debian CVE
Debian CVE
added 2008/08/27 8:0 p.m.26 views

CVE-2008-3281

libxml2 2.6.32 and earlier does not properly detect recursion during entity expansion in an attribute value, which allows context-dependent attackers to cause a denial of service memory and CPU consumption via a crafted XML document...

6.5CVSS6AI score0.02507EPSS
Exploits1
UbuntuCve
UbuntuCve
added 2003/12/31 5:0 a.m.61 views

CVE-2003-1564

libxml2, possibly before 2.5.0, does not properly detect recursion during entity expansion, which allows context-dependent attackers to cause a denial of service memory and CPU consumption via a crafted XML document containing a large number of nested entity references, aka the "billion laughs...

9.3CVSS6.8AI score0.01619EPSS
Exploits0References1
Rows per page
Query Builder