xml-dev - Re: [xml-dev] Malicious XML

Re: [xml-dev] Malicious XML

[ Lists Home | Date Index | Thread Index ]

To: xml-dev@lists.xml.org
Subject: Re: [xml-dev] Malicious XML
From: Richard Tobin <richard@cogsci.ed.ac.uk>
Date: Fri, 15 Nov 2002 15:01:59 GMT
Cc:
In-reply-to: <200211151018.18512.miles@milessabin.com>
Organization: HCRC, University of Edinburgh

>Any chance of some details of just what it is in the internal subset 
>which triggers this behaviour, and how?

You can easily construct a few entities that expand to a huge result.
Depending on how your parser returns things, this may use lots of
memory or merely use up lots of cpu time.  There is an example at

  http://www.cogsci.ed.ac.uk/~richard/billion-laughs.xml

I don't recommend loading this file into a browser.

-- Richard

Follow-Ups:
- Re: [xml-dev] Malicious XML
  - From: "Karl Waclawek" <karl@waclawek.net>

References:
- Re: [xml-dev] Malicious XML
  - From: Miles Sabin <miles@milessabin.com>

Prev by Date: Re: [xml-dev] Malicious XML
Next by Date: RE: [xml-dev] dtds, schemas, xhtml, and multimedia technologies
Previous by thread: Re: [xml-dev] Malicious XML
Next by thread: Re: [xml-dev] Malicious XML
Index(es):
- Date
- Thread