Lucene search

K
veracodeVeracode Vulnerability DatabaseVERACODE:7249
HistoryAug 07, 2018 - 6:40 a.m.

Denial-of-Service (DoS)

2018-08-0706:40:06
Veracode Vulnerability Database
sca.analysiscenter.veracode.com
6

5 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:N/I:N/A:P

libxml2.so is vulnerable to denial of service attack. This is due to incorrect entity boundaries and start tags which could lead to out-of-bounds heap read in the xmlParseMisc function in parser.c, allowing a context-dependent attacker to cause a denial of service condition.

References

5 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:N/I:N/A:P

Related for VERACODE:7249