Security Advisory

CVE-2011-2206

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2011-06-22 22:00:00

Last updated 2024-09-16 22:10:13

Assigner redhat

State PUBLISHED

Description

XMLParser.pm in DJabberd before 0.85 allows remote authenticated users to read arbitrary files, and possibly send HTTP requests to intranet servers or cause a denial of service (CPU and memory consumption), via an XML external entity declaration in conjunction with an entity reference, a different vulnerability than CVE-2011-1757.

← Browse all CVEs View on cve.org ↗