BitsCast 0.13.0 allows remote malicious users to cause a denial of service (application crash) via an RSS 2.0 feed item with certain invalid strings in a pubDate element, as demonstrated by repeated "../A" or "A/../" patterns.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
bitscast bitscast 0.13.0 |