[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Apple iOS / OSX Foundation NSXMLParser XML eXternal Entity (XXE) Flaw

hope that it will help promote public safety.  This advisory comes with
absolutely NO WARRANTY; not even the implied warranty of merchantability or
fitness for a particular purpose.  Neither Virtual Security Research, LLC nor
the author accepts any liability for any direct, indirect, or consequential
loss or damage arising from use of, or reliance on, this information.

See the VSR disclosure policy for more information on our responsible
disclosure practices:

     Copyright 2014 Virtual Security Research, LLC.  All rights reserved.

Attachment: signature.asc
Description: Message signed with OpenPGP using GPGMail