0.007 Low
EPSS
Percentile
81.1%
The Xerces-C XML parser fails to successfully parse a DTD that is deeply nested, and this causes a stack overflow, which makes a denial of service attack against many applications possible by an unauthenticated attacker.
seclists.org/bugtraq/2016/Jun/115
access.redhat.com/security/cve/CVE-2016-4463
xerces.apache.org/xerces-c/secadv/CVE-2016-4463.txt