CVE-2017-8316

Description

IntelliJ IDEA XML parser was found vulnerable to XML External Entity attack, an attacker can exploit the vulnerability by implementing malicious code on both Androidmanifest.xml.

Affected products

• JetBrains / IntelliJ IDEA<173 – <173

References

• MISChttp://git.jetbrains.org/?p=idea/adt-tools-base.git%3Ba=commit%3Bh=a778b2b88515513654e002cd51cbe8eb8226e96b
• MISChttps://youtrack.jetbrains.com/issue/IDEA-175381
• MISChttps://research.checkpoint.com/parsedroid-targeting-android-development-research-community/