Stack consumption vulnerability in libxml2 2.5.10, 2.6.16, 2.6.26, 2.6.27, and 2.6.32, and libxml 1.8.17, allows context-dependent malicious users to cause a denial of service (application crash) via a large depth of element declarations in a DTD, related to a function recursion, as demonstrated by the Codenomicon XML fuzzing framework.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
xmlsoft libxml2 2.6.16 |
||
xmlsoft libxml2 2.6.32 |
||
xmlsoft libxml2 2.6.26 |
||
xmlsoft libxml2 2.6.27 |
||
xmlsoft libxml 1.8.17 |
||
xmlsoft libxml2 2.5.10 |