IMFreedom Security

Description

An out-of-bounds write when invalid xml is sent by a malicious server.

Mitigation

Only decode HTML entities that are well formed.