|
|
Subscribe / Log in / New account

castor: XML injection

Package(s):castor CVE #(s):CVE-2014-3004
Created:June 20, 2014 Updated:December 31, 2014
Description:

From the CVE entry: The default configuration for the Xerces SAX Parser in Castor before 1.3.3 allows context-dependent attackers to conduct XML External Entity (XXE) attacks via a crafted XML document.

Alerts:
Mageia MGASA-2014-0556 castor 2014-12-31
Fedora FEDORA-2014-16346 castor 2014-12-15
Fedora FEDORA-2014-16446 castor 2014-12-15
openSUSE openSUSE-SU-2014:0822-1 castor 2014-06-20
to post comments


Copyright © 2025, Eklektix, Inc.
Comments and public postings are copyrighted by their creators.
Linux is a registered trademark of Linus Torvalds