Re: [Python-Dev] cpython (2.7): Issue 17538: Document XML vulnerabilties
26 Mar
2013
26 Mar
'13
9:41 p.m.
On Tue, 26 Mar 2013 17:53:39 +0100 (CET)
christian.heimes
+ +The XML processing modules are not secure against maliciously constructed data. +An attacker can abuse vulnerabilities for e.g. denial of service attacks, to +access local files, to generate network connections to other machines, or +to or circumvent firewalls.
Really? Where does the "access local files, generate network connections, circumvent firewalls" allegation come from? Regards Antoine.
4041
Age (days ago)
4041
Last active (days ago)
2 comments
3 participants
participants (3)
-
Antoine Pitrou
-
Christian Heimes
-
Donald Stufft