Multiple buffer overflows in (1) internal/XMLReader.cpp, (2) util/XMLURL.cpp, and (3) util/XMLUri.cpp in the XML Parser library in Apache Xerces-C prior to 3.1.3 allow remote malicious users to cause a denial of service (segmentation fault or memory corruption) or possibly execute arbitrary code via a crafted document.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
apache xerces-c\\\\\\+\\\\\\+ |
||
fedoraproject fedora 22 |
||
fedoraproject fedora 23 |
||
fedoraproject fedora 24 |