Apache Xerces C++ Use-After-Free Vulnerability in DTDScanner.cpp

Apache Xerces C++ Use-After-Free Vulnerability in DTDScanner.cpp

CVE-2016-2099 · HIGH Severity

AV:N/AC:L/AU:N/C:C/I:C/A:C

Use-after-free vulnerability in validators/DTD/DTDScanner.cpp in Apache Xerces C++ 3.1.3 and earlier allows context-dependent attackers to have unspecified impact via an invalid character in an XML document.

Learn more about our Cis Benchmark Audit For Apache Http Server.