ID | CVE-2011-1756 | ||||||
Sažetak | modules/xmpp/serv_xmpp.c in Citadel 7.86 and earlier does not properly detect recursion during entity expansion, which allows remote attackers to cause a denial of service (memory and CPU consumption) via a crafted XML document containing a large number of nested entity references, a similar issue to CVE-2003-1564. | ||||||
Reference |
|
||||||
CVSS |
|
||||||
Pristup |
|
||||||
Impact |
|
||||||
CVSS vektor | AV:N/AC:L/Au:N/C:N/I:N/A:P | ||||||
Zadnje važnije ažuriranje | 26-10-2011 - 04:00 | ||||||
Objavljeno | 21-06-2011 - 02:52 |