Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2004-1575

Overview

Vulnerability Score 5.0 5.0
CVE Id CVE-2004-1575
Last Modified 05 Sep 2008 04:41:46
Published 31 Dec 2004 12:00:00
Confidentiality Impact NONE NONE
Integrity Impact NONE NONE
Availability Impact PARTIAL PARTIAL
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2004-1575

Summary

The XML parser in Xerces-C++ 2.5.0 allows remote attackers to cause a denial of service (CPU consumption) via XML attributes in a crafted XML document.

Vulnerable Systems

Application

  • Apache Xerces-c%2b%2b 2.5.0


References

BID - 11312

SECUNIA - 12715

XF - xercescplusplus-xml-parser-dos(17575)

BUGTRAQ - 20041002 Security advisory - Xerces-C++ 2.5.0: Attribute blowup


Last Updated: 27 May 2016 10:39:06