cve/CVE-2015-8242.md at master

0xMarcio/cve

Fork 0

Files

0xMarcio cb00e1339f Update CVE list 2025-09-29 21:09

2025-09-29 21:09:30 +02:00

870 B

Raw Permalink Blame History

CVE-2015-8242

Description

The xmlSAX2TextNode function in SAX2.c in the push interface in the HTML parser in libxml2 before 2.9.3 allows context-dependent attackers to cause a denial of service (stack-based buffer over-read and application crash) or obtain sensitive information via crafted XML data.

POC

Reference

http://www.oracle.com/technetwork/topics/security/bulletinjan2016-2867206.html
http://www.oracle.com/technetwork/topics/security/linuxbulletinoct2015-2719645.html

Github

https://github.com/mrash/afl-cve

870 B Raw Permalink Blame History

CVE-2015-8242

Description

POC

Reference

Github

870 B

Raw Permalink Blame History