Apache Xerces CVE-2016-2099 Use-After-Free Remote Code Execution Vulnerability

Bugtraq ID: 90502
Class: Design Error
CVE: CVE-2016-2099
Remote: Yes
Local: No
Published: May 09 2016 12:00AM
Updated: Jan 12 2017 04:05AM
Credit: Gustavo Grieco.
Vulnerable: Gentoo Linux
Apache Xerces-c 3.1.1-5.1+deb8u1
Apache Xerces-c 3.1.1-3+deb7u2
Apache Xerces C++ 3.1.3
Apache Xerces C++ 3.1.2
Apache Xerces C++ 3.1.1
Apache Xerces C++ 3.1.0
Not Vulnerable: Apache Xerces-c 3.1.3+debian-2
Apache Xerces-c 3.1.1-5.1+deb8u2
Apache Xerces-c 3.1.1-3+deb7u3


 

Privacy Statement
Copyright 2010, SecurityFocus