Integer Overflow Vulnerability in libxml2: Remote Heap Corruption via Crafted XML File

Integer Overflow Vulnerability in libxml2: Remote Heap Corruption via Crafted XML File

CVE-2017-5130 · MEDIUM Severity

AV:N/AC:M/AU:N/C:P/I:P/A:P

An integer overflow in xmlmemory.c in libxml2 before 2.9.5, as used in Google Chrome prior to 62.0.3202.62 and other products, allowed a remote attacker to potentially exploit heap corruption via a crafted XML file.

Learn more about our Cis Benchmark Audit For Google Chrome.