CVE-2009-3560

Description

The big2_toUtf8 function in lib/xmltok.c in libexpat in Expat 2.0.1, as used in the XML-Twig module for Perl, allows context-dependent attackers to cause a denial of service (application crash) via an XML document with malformed UTF-8 sequences that trigger a buffer over-read, related to the doProlog function in lib/xmlparse.c, a different vulnerability than CVE-2009-2625 and CVE-2009-3720.

Related Vulnerabilities

platform vulnerability
CVE-2009-3560 cableswig
CVE-2009-3560 insighttoolkit
CVE-2009-3560 poco
CVE-2009-3560 wxwidgets2.8
CVE-2009-3560 smart
CVE-2009-3560 ghostscript
CVE-2009-3560 python2.6
CVE-2009-3560 udunits
CVE-2009-3560 mcabber
CVE-2009-3560 expat
CVE-2009-3560 xmlrpc-c
CVE-2009-3560 texlive-bin
CVE-2009-3560 gdcm
CVE-2009-3560 tla
CVE-2009-3560 coin3
CVE-2009-3560 iceweasel
CVE-2009-3560 ayttm
CVE-2009-3560 vnc4
CVE-2009-3560 xulrunner
CVE-2009-3560 vxl
CVE-2009-3560 xotcl
CVE-2009-3560 paraview
CVE-2009-3560 simgear
CVE-2009-3560 tdom
CVE-2009-3560 cmake
CVE-2009-3560 cadaver
CVE-2009-3560 matanza
CVE-2009-3560 audacity
CVE-2009-3560