Description
The WebDAV Message Handler for Internet Information Services (IIS) 5.0, 5.1, and 6.0 allows remote attackers to cause a denial of service (memory and CPU exhaustion, application crash) via a PROPFIND request with an XML message containing XML elements with a large number of attributes.
Remediation
References
Related Vulnerabilities
Oracle JRE CVE-2017-10357 Vulnerability (CVE-2017-10357)
Oracle JRE CVE-2018-2811 Vulnerability (CVE-2018-2811)
WordPress Plugin Poll Maker Cross-Site Scripting (3.2.8)
WordPress Plugin SAML SP Single Sign On-SSO login Cross-Site Scripting (4.8.83)
SugarCRM Improper Control of Generation of Code ('Code Injection') Vulnerability (CVE-2019-17308)