CVE-2014-6303

The Monitoring Administration pages in PNMsoft Sequence Kinetics before 7.7 do not properly detect recursion during entity expansion, which allows remote attackers to cause a denial of service (resource consumption) via a crafted XML document containing a large number of nested entity references, a similar issue to CVE-2003-1564.
Advertisement

NeevaHost hosting service

Configurations

Configuration 1 (hide)

cpe:2.3:a:pnmsoft:sequence_kinetics:*:*:*:*:*:*:*:*

Information

Published : 2015-02-19 03:59

Updated : 2015-02-19 10:53


NVD link : CVE-2014-6303

Mitre link : CVE-2014-6303


JSON object : View

CWE
CWE-399

Resource Management Errors

Advertisement

dedicated server usa

Products Affected

pnmsoft

  • sequence_kinetics