CVEs-PoC/2017/CVE-2017-5969.md at main

CalvinBackup/CVEs-PoC

Fork 0

mirror of https://github.com/0xMarcio/cve.git synced 2026-04-21 09:56:14 +02:00

Files

T

0xMarcio cb00e1339f Update CVE list 2025-09-29 21:09

2025-09-29 21:09:30 +02:00

947 B

Raw Permalink Blame History

CVE-2017-5969

Description

libxml2 2.9.4, when used in recover mode, allows remote attackers to cause a denial of service (NULL pointer dereference) via a crafted XML document. NOTE: The maintainer states "I would disagree of a CVE with the Recover parsing option which should only be used for manual recovery at least for XML parser.

POC

Reference

https://hackerone.com/reports/262665

Github

https://github.com/ARPSyndicate/cvemon
https://github.com/SoK-Vul4C/SoK
https://github.com/holmes-py/reports-summary
https://github.com/skdsfy/sok
https://github.com/yuntongzhang/senx-experiments

947 B Raw Permalink Blame History

CVE-2017-5969

Description

POC

Reference

Github

947 B

Raw Permalink Blame History