Lucene search
Ubuntu.comUB:CVE-2008-4482HistoryOct 08, 2008 - 12:00 a.m.
CVE-2008-4482
2008-10-0800:00:00
ubuntu.com
ubuntu.com
8
7.8 High
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
COMPLETE
AV:N/AC:L/Au:N/C:N/I:N/A:C
0.003 Low
EPSS
Percentile
68.1%
The XML parser in Xerces-C++ before 3.0.0 allows context-dependent
attackers to cause a denial of service (stack consumption and crash) via an
XML schema definition with a large maxOccurs value, which triggers
excessive memory consumption during validation of an XML file.
Notes
| Author | Note |
|---|---|
| mdeslaur | debian is not fixing this, let’s ignore it also |
Related
nessus
nessus
GLSA-200903-19 : Xerces-C++: Denial of Service
2009-03-10 00:00:00
gentoo
gentoo
Xerces-C++: Denial of service
2009-03-09 00:00:00
prion
prion
Design/Logic Flaw
2008-10-08 02:00:00
redhatcve
redhatcve
CVE-2008-4482
2015-10-30 10:13:56
nvd
nvd
CVE-2008-4482
2008-10-08 02:00:01
cve
cve
CVE-2008-4482
2008-10-08 02:00:01
openvas
openvas
Gentoo Security Advisory GLSA 200903-19 (xerces-c)
2009-03-13 00:00:00
Gentoo Security Advisory GLSA 200903-19 (xerces-c)
2009-03-13 00:00:00
cvelist
cvelist
CVE-2008-4482
2008-10-08 01:00:00
7.8 High
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
COMPLETE
AV:N/AC:L/Au:N/C:N/I:N/A:C
0.003 Low
EPSS
Percentile
68.1%
Related for UB:CVE-2008-4482