I am coding an anonymous WCF service that allows others to post XML into it.
Does using different kinds of XML parsers XDocument, XMLDocument
, or even 3rd party parsers increase the attack surface area? (Buffer overflows, etc).
I am coding an anonymous WCF service that allows others to post XML into it.
Does using different kinds of XML parsers XDocument, XMLDocument
, or even 3rd party parsers increase the attack surface area? (Buffer overflows, etc).
Yes. By definition, allowing user interaction with additional software increases the Attack surface.