Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
The Monitoring Administration pages in PNMsoft Sequence Kinetics before 7.7 do not properly detect recursion during entity expansion, which allows remote attackers to cause a denial of service (resource consumption) via a crafted XML document containing a large number of nested entity references, a similar issue to CVE-2003-1564.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
PNMsoft Sequence Kinetics Monitoring Administration页面资源管理错误漏洞
Vulnerability Description
PNMsoft Sequence Kinetics是PNMsoft公司的一套能够组织建模,设计和执行的智能工作流应用程序。Monitoring Administration是其中的一个监控管理页面。 PNMsoft Sequence Kinetics 7.5及之前版本的Monitoring Administration页面中存在安全漏洞,该漏洞源于程序在实体扩展期间没有正确删除递归。远程攻击者可借助带有大量嵌套实体引用的XML文档利用该漏洞造成拒绝服务(资源消耗)。
CVSS Information
N/A
Vulnerability Type
N/A