hi, I am using Xerces 2.1 C++ SAXParser for parsing the xml input. Is there any way to disable external entity dereferencing to avoid XEE attack for this implementation. Upgrading to later version is not preferable.
I cant find setFeature or getFeature method provided with this SAXParser interface. Would writing a custom entityResolver and filtering expansion of all external entities, be a right way of achieving this? Any pointer would be appreciated. Thanks, Anirudh --------------------------------------------------------------------- To unsubscribe, e-mail: c-dev-unsubscr...@xerces.apache.org For additional commands, e-mail: c-dev-h...@xerces.apache.org
