Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
The XML Editor in Microsoft InfoPath 2007 SP2 and 2010; SQL Server 2005 SP3 and SP4 and 2008 SP1, SP2, and R2; SQL Server Management Studio Express (SSMSE) 2005; and Visual Studio 2005 SP1, 2008 SP1, and 2010 does not properly handle external entities, which allows remote attackers to read arbitrary files via a crafted .disco (Web Service Discovery) file, aka "XML External Entities Resolution Vulnerability."
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Microsoft XML Editor外部实体解析信息泄露漏洞
Vulnerability Description
Microsoft XML编辑器中存在信息泄露漏洞。该漏洞是由于解析Web Service Discovery文件中的XML外部实体时产生的错误导致的,远程攻击者可利用该漏洞泄露任意文件的内容。 该漏洞位于Microsoft InfoPath 2007 SP2和2010版本;SQL Server 2005 SP3,SP4和2008 SP1,SP2,R2;SQL Server Management Studio Express (SSMSE) 2005;以及Visual Studio 2005 SP1,20
CVSS Information
N/A
Vulnerability Type
N/A