CVE-2009-2625
CVSS v2.0
5 (Medium)
EPSS
17.16 % (96th)
Affected Products
9
Advisories
10
XMLScanner.java in Apache Xerces2 Java, as used in Sun Java Runtime Environment (JRE) in JDK and JRE 6 before Update 15 and JDK and JRE 5.0 before Update 20, and in other products, allows remote attackers to cause a denial of service (infinite loop and application hang) via malformed XML input, as demonstrated by the Codenomicon XML fuzzing framework.
- CVE Status
- PUBLISHED
- CNA
- CERT/CC
- Published Date
-
2009-08-06 15:30:00
(15 years ago) - Updated Date
-
2023-11-07 02:04:10
(10 months ago)
Affected Products
Loading...
Loading...
Configuration #1
|
Configuration #2
|
Configuration #3
|
Configuration #4
|
Configuration #5
|
Configuration #6
|
Configuration #7
|
Loading...
Loading...
Loading...
Loading...
Loading...
Loading...
Loading...
Loading...