The XML4J parser in IBM WebSphere Message Broker 6.1 before 188.8.131.52, 7.0 before 184.108.40.206, and 8.0 before 220.127.116.11 and IBM Integration Bus 9.0 before 18.104.22.168 allows remote attackers to cause a denial of service (memory consumption) via a crafted XML document that triggers expansion for many entities.
Publish Date : 2013-10-19 Last Update Date : 2017-08-28
OVAL (Open Vulnerability and Assessment Language) definitions define exactly what should be done to verify
a vulnerability or a missing patch. Check out the OVAL definitions
if you want to learn what you should do to verify a vulnerability.