CVE-2017-8315
N/A
N/A
Summary
Eclipse XML parser for the Eclipse IDE versions 2017.2.5 and earlier was found vulnerable to an XML External Entity attack. An attacker can exploit the vulnerability by implementing malicious code on Androidmanifest.xml.
Affected Software
| Vendor | Product | Version Range | Status |
|---|---|---|---|
| Check Point Software Technologies Ltd. | Eclipse | All version lower or equal to 2017.2.5 | affected |
Weaknesses
- Local Privilege Escalation
ADP Enrichment
CVE Program Container
Additional References
- https://bugs.eclipse.org/bugs/show_bug.cgi?id=519169
- https://research.checkpoint.com/parsedroid-targeting-android-development-research-community/
References
- https://bugs.eclipse.org/bugs/show_bug.cgi?id=519169
- https://research.checkpoint.com/parsedroid-targeting-android-development-research-community/
Feedback
Was this page helpful?
Glad to hear it! Please tell us how we can improve.
Sorry to hear that. Please tell us how we can improve.