Internet2 » Shibboleth-sp : Security Vulnerabilities, CVEs, CVSS score >= 9
Buffer overflow in OpenSAML before 1.1.3 as used in Internet2 Shibboleth Service Provider software 1.3.x before 1.3.4, and XMLTooling before 1.2.2 as used in Internet2 Shibboleth Service Provider software 2.x before 2.2.1, allows remote attackers to cause a denial of service and possibly execute arbitrary code via a malformed encoded URL.
Max CVSS
9.3
EPSS Score
3.46%
Published
2009-09-29
Updated
2017-08-17
1 vulnerabilities found