Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
An issue was discovered in OSSEC 3.6.0. An uncontrolled recursion vulnerability in os_xml.c occurs when a large number of opening and closing XML tags is used. Because recursion is used in _ReadElem without restriction, an attacker can trigger a segmentation fault once unmapped memory is reached.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
OSSEC 安全漏洞
Vulnerability Description
Scott R. Shinn OSSEC是 (Scott R. Shinn)开源的一个应用软件。提供一个简单,功能强大且开源的解决方案中将HIDS(基于主机的入侵检测),日志监视和SIM,SIEM的所有方面结合在一起。 OSSEC 3.6.0 存在安全漏洞,该漏洞源于在ReadElem中不受限制地使用递归,攻击者可利用该漏洞在到达未映射内存时触发分段错误。
CVSS Information
N/A
Vulnerability Type
N/A