mirror of
https://github.com/0xMarcio/cve.git
synced 2026-02-13 03:02:49 +00:00
1.1 KiB
1.1 KiB
CVE-2012-2871
Description
libxml2 2.9.0-rc1 and earlier, as used in Google Chrome before 21.0.1180.89, does not properly support a cast of an unspecified variable during handling of XSL transforms, which allows remote attackers to cause a denial of service or possibly have unknown other impact via a crafted document, related to the _xmlNs data structure in include/libxml/tree.h.
POC
Reference
No PoCs from references.
Github
- https://github.com/Hwangtaewon/radamsa
- https://github.com/JulianDavis/radamsa
- https://github.com/StephenHaruna/RADAMSA
- https://github.com/marcostolosa/radamsa
- https://github.com/nqwang/radamsa
- https://github.com/sambacha/mirror-radamsa
- https://github.com/sunzu94/radamsa-Fuzzer
- https://github.com/vnc0/radamsa-ios