Apache Santuario XML Security for C++ CVE-2013-2210 Heap Buffer Overflow Vulnerability

Apache Santuario XML Security for C++ is prone to a remote heap-based buffer-overflow vulnerability because it fails to properly sanitize user-supplied input.

Successful exploits allow remote attackers to execute arbitrary code in the context of the vulnerable application. Failed exploit attempts will likely result in denial-of-service conditions.

Note: This vulnerability exists due to an improper fix of CVE-2013-2154.

Apache Santuario XML Security for C++ versions prior to 1.7.2 are vulnerable.


 

Privacy Statement
Copyright 2010, SecurityFocus