Security Advisory

CVE-2013-4113

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2013-07-13 10:00:00

Last updated 2024-08-06 16:30:49

Assigner redhat

State PUBLISHED

Description

ext/xml/xml.c in PHP before 5.3.27 does not properly consider parsing depth, which allows remote attackers to cause a denial of service (heap memory corruption) or possibly have unspecified other impact via a crafted document that is processed by the xml_parse_into_struct function.

← Browse all CVEs View on cve.org ↗