Vulnerabilities

CVE-2013-1864

by Fred · 23/05/2014

The Portable Tool Library (aka PTLib) before 2.10.10, as used in Ekiga before 4.0.1, does not properly detect recursion during entity expansion, which allows remote attackers to cause a denial of service (memory and CPU consumption) via a crafted PXML document containing a large number of nested entity references, aka a "billion laughs attack."

Date published : 2014-05-23

http://www.securityfocus.com/bid/58520

http://sourceforge.net/p/opalvoip/code/28856

Similar

Tags: Cybersecurity Alert