Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
The XML parser in IBM Rational DOORS Next Generation 4.x before 4.0.7 iFix3 and 5.x before 5.0.2 and Rational Requirements Composer 2.x and 3.x before 3.0.1.6 iFix5 and 4.x before 4.0.7 iFix3 does not properly detect recursion during entity expansion, which allows remote attackers to cause a denial of service (memory consumption) via a crafted XML document containing a large number of nested entity references, a similar issue to CVE-2003-1564.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
IBM Rational DOORS Next Generation和Rational Requirements Composer 资源管理错误漏洞
Vulnerability Description
IBM Rational DOORS Next Generation(DNG)和Rational Requirements Composer(RRC)都是美国IBM公司的需求管理解决方案。该方案主要用于定义、管理和报告项目生命周期中的需求。 IBM Rational DOORS Next Generation和Rational Requirements Composer的XML解析器中存在安全漏洞,该漏洞源于程序在实体扩展时没有正确检测递归。远程攻击者可借助特制的XML文档利用该漏洞造成拒绝服务(内存损坏
CVSS Information
N/A
Vulnerability Type
N/A