Vulnerability CVE-2012-1147: Information

Description

readfilemap.c in expat before 2.1.0 allows context-dependent attackers to cause a denial of service (file descriptor consumption) via a large number of crafted XML files.

Severity: MEDIUM (4.3)

URL: https://nvd.nist.gov/vuln/detail/CVE-2012-1147

Published: July 3, 2012

Modified: Jan. 25, 2021

Error type identifier: CWE-20

References to Advisories, Solutions, and Tools

Hyperlink	Resource
http://sourceforge.net/projects/expat/files/expat/2.1.0/
http://sourceforge.net/tracker/?func=detail&aid=2895533&group_id=10127&atid=110127
http://trac.wxwidgets.org/ticket/11432
http://trac.wxwidgets.org/ticket/11194
http://expat.cvs.sourceforge.net/viewvc/expat/expat/xmlwf/readfilemap.c?r1=1.14&r2=1.15
52379
APPLE-SA-2015-12-08-3	Vendor Advisory
https://support.apple.com/HT205637	Vendor Advisory
1034344

Affected configurations:
1. Configuration 1
  cpe:2.3:o:apple:mac_os_x:10.11.0:*:*:*:*:*:*:*
  cpe:2.3:o:apple:mac_os_x:10.11.1:*:*:*:*:*:*:*
  
  Configuration 2
  cpe:2.3:a:libexpat_project:libexpat:1.95.1:*:*:*:*:*:*:*
  cpe:2.3:a:libexpat_project:libexpat:1.95.2:*:*:*:*:*:*:*
  cpe:2.3:a:libexpat_project:libexpat:1.95.4:*:*:*:*:*:*:*
  cpe:2.3:a:libexpat_project:libexpat:1.95.5:*:*:*:*:*:*:*
  cpe:2.3:a:libexpat_project:libexpat:1.95.6:*:*:*:*:*:*:*
  cpe:2.3:a:libexpat_project:libexpat:1.95.7:*:*:*:*:*:*:*
  cpe:2.3:a:libexpat_project:libexpat:1.95.8:*:*:*:*:*:*:*
  cpe:2.3:a:libexpat_project:libexpat:2.0.0:*:*:*:*:*:*:*
  cpe:2.3:a:libexpat_project:libexpat:*:*:*:*:*:*:*:*
  End including
  2.0.1

Version: v24.5.0

Vulnerability CVE-2012-1147: Information

Description

References to Advisories, Solutions, and Tools

Configuration 1

Configuration 2