TinyXML through 2.6.2 has an infinite loop in TiXmlParsingData::Stamp in tinyxmlparser.cpp via the TIXML_UTF_LEAD_0 case. It can be triggered by a crafted XML message and leads to a denial of service.
The product contains an iteration or loop with an exit condition that cannot be reached, i.e., an infinite loop.
Name | Vendor | Start Version | End Version |
---|---|---|---|
Tinyxml | Tinyxml_project | 2.3.2 (including) | 2.6.2 (including) |
Tinyxml | Tinyxml_project | 2.3.0-beta (including) | 2.3.0-beta (including) |
Tinyxml | Tinyxml_project | 2.3.1-beta (including) | 2.3.1-beta (including) |