XXE DoS and .Net
Posted by James Jardine on May 6, 2019 · Comments Off on XXE DoS and .Net
Filed under: Development, Security
Filed under: Development, Security
External XML Entity (XXE) vulnerabilities can be more than just a risk of remote code execution (RCE), information leakage, or server side request forgery (SSRF). A denial of service (DoS) attack is commonly overlooked. However, given a mis-configured XML parser, it may be possible for an attacker to cause a denial of service attack and ...