mirror of
https://github.com/Ponce/slackbuilds
synced 2024-12-02 13:04:42 +01:00
06ea7508aa
Signed-off-by: B. Watson <yalhcru@gmail.com>
8 lines
523 B
Text
8 lines
523 B
Text
The results of an attack on a vulnerable XML library can be fairly
|
|
dramatic. With just a few hundred Bytes of XML data an attacker
|
|
can occupy several Gigabytes of memory within seconds. An attacker
|
|
can also keep CPUs busy for a long time with a small to medium size
|
|
request. Under some circumstances it is even possible to access local
|
|
files on your server, to circumvent a firewall, or to abuse services
|
|
to rebound attacks to third parties. This library allows for XML to
|
|
be parsed in a manner that avoids these pitfalls.
|