Get a demo
100% Signal 0% Noise Invicti Logo - The Largest Dynamic Application Security Solutions Provider In The World Get a demo
Apache HTTP Server Vulnerability - CVE-2009-3720 - Vulnerability Database
Apache HTTP Server

Apache HTTP Server Vulnerability - CVE-2009-3720

Medium
Reference: CVE-2009-3720
NVD Link: https://nvd.nist.gov/vuln/detail/CVE-2009-3720
Title: Apache HTTP Server Vulnerability
Overview:

The updatePosition function in lib/xmltok_impl.c in libexpat in Expat 2.0.1 as used in Python PyXML w3c-libwww and other software allows context-dependent attackers to cause a denial of service (application crash) via an XML document with crafted UTF-8 sequences that trigger a buffer over-read a different vulnerability than CVE-2009-2625.