This security bulletin contains one medium risk vulnerability.
Exploit availability: NoDescription
The vulnerability allows remote attackers to cause a denial of service attack.The vulnerability exists due to insufficient validation of user-supplied input within the expat library, when processing XML files. A remote attacker can pass specially crafted XML content to the affected library and perform a denial of service (DoS) attack. Mitigation
Install update from vendor's website.Vulnerable software versions
expat: 1.95.1 - 2.0.1
Can this vulnerability be exploited remotely?
Is there known malware, which exploits this vulnerability?