CVE-2012-0876

medium
New! CVE Severity Now Using CVSS v3

The calculated severity for CVEs has been updated to use CVSS v3 by default. CVEs that do not have a CVSS v3 score will fall back CVSS v2 for calculating severity. Severity display preferences can be toggled in the settings dropdown.

Description

The XML parser (xmlparse.c) in expat before 2.1.0 computes hash values without restricting the ability to trigger hash collisions predictably, which allows context-dependent attackers to cause a denial of service (CPU consumption) via an XML file with many identifiers with the same value.

References

http://secunia.com/advisories/49504

http://mail.libexpat.org/pipermail/expat-discuss/2012-March/002768.html

http://rhn.redhat.com/errata/RHSA-2012-0731.html

http://sourceforge.net/projects/expat/files/expat/2.1.0/

http://www.mandriva.com/security/advisories?name=MDVSA-2012:041

http://sourceforge.net/tracker/?func=detail&atid=110127&aid=3496608&group_id=10127

http://bugs.python.org/issue13703#msg151870

http://www.ubuntu.com/usn/USN-1613-2

http://www.debian.org/security/2012/dsa-2525

http://www.ubuntu.com/usn/USN-1527-1

http://www.ubuntu.com/usn/USN-1613-1

http://secunia.com/advisories/51040

http://secunia.com/advisories/51024

http://www.securityfocus.com/bid/52379

http://lists.apple.com/archives/security-announce/2013/Oct/msg00004.html

http://lists.apple.com/archives/security-announce/2015/Dec/msg00005.html

https://support.apple.com/HT205637

http://www.oracle.com/technetwork/topics/security/bulletinjul2016-3090568.html

http://rhn.redhat.com/errata/RHSA-2016-0062.html

https://www.tenable.com/security/tns-2016-20

http://rhn.redhat.com/errata/RHSA-2016-2957.html

https://kc.mcafee.com/corporate/index?page=content&id=SB10365

Details

Source: MITRE

Published: 2012-07-03

Updated: 2021-07-31

Type: CWE-399

Risk Information

CVSS v2

Base Score: 4.3

Vector: AV:N/AC:M/Au:N/C:N/I:N/A:P

Impact Score: 2.9

Exploitability Score: 8.6

Severity: MEDIUM

Vulnerable Software

Configuration 1

OR

cpe:2.3:a:libexpat_project:libexpat:1.95.2:*:*:*:*:*:*:*

cpe:2.3:a:libexpat_project:libexpat:1.95.1:*:*:*:*:*:*:*

cpe:2.3:a:libexpat_project:libexpat:1.95.5:*:*:*:*:*:*:*

cpe:2.3:a:libexpat_project:libexpat:1.95.4:*:*:*:*:*:*:*

cpe:2.3:a:libexpat_project:libexpat:2.0.0:*:*:*:*:*:*:*

cpe:2.3:a:libexpat_project:libexpat:1.95.8:*:*:*:*:*:*:*

cpe:2.3:a:libexpat_project:libexpat:*:*:*:*:*:*:*:* versions up to 2.0.1 (inclusive)

cpe:2.3:a:libexpat_project:libexpat:1.95.7:*:*:*:*:*:*:*

cpe:2.3:a:libexpat_project:libexpat:1.95.6:*:*:*:*:*:*:*

Tenable Plugins

View all (37 total)

IDNameProductFamilySeverity
145061IBM HTTP Server 7.0.0.0 <= 7.0.0.41 / 8.0.0.0 < 8.0.0.13 / 8.5.0.0 < 8.5.5.11 / 9.0.0.0 < 9.0.0.2 Multiple Vulnerabilities (548231)NessusWeb Servers
critical
134106SUSE SLED12 / SLES12 Security Update : python3 (SUSE-SU-2020:0497-1)NessusSuSE Local Security Checks
critical
109594FreeBSD : python 2.7 -- multiple vulnerabilities (8719b935-8bae-41ad-92ba-3c826f651219)NessusFreeBSD Local Security Checks
critical
109583Slackware 14.0 / 14.1 / 14.2 / current : python (SSA:2018-124-01)NessusSlackware Local Security Checks
critical
103796FreeBSD : Python 2.7 -- multiple vulnerabilities (9164f51e-ae20-11e7-a633-009c02a2ab30)NessusFreeBSD Local Security Checks
critical
97280openSUSE Security Update : expat (openSUSE-2017-260)NessusSuSE Local Security Checks
high
97080SUSE SLED12 / SLES12 Security Update : expat (SUSE-SU-2017:0424-1)NessusSuSE Local Security Checks
high
97065SUSE SLES11 Security Update : expat (SUSE-SU-2017:0415-1)NessusSuSE Local Security Checks
high
96337Tenable Passive Vulnerability Scanner 5.x < 5.2.0 Multiple Vulnerabilities (SWEET32)NessusMisc.
critical
94301F5 Networks BIG-IP : Expat XML library vulnerability (K70938105)NessusF5 Networks Local Security Checks
high
9325Mac OS X 10.11.x < 10.11.2 Multiple VulnerabilitiesNessus Network MonitorOperating System Detection
critical
89039VMware ESX / ESXi Multiple Vulnerabilities (VMSA-2012-0016) (remote check)NessusMisc.
high
87321Mac OS X Multiple Vulnerabilities (Security Updates 2015-005 / 2015-008)NessusMacOS X Local Security Checks
critical
87314Mac OS X 10.11.x < 10.11.2 Multiple VulnerabilitiesNessusMacOS X Local Security Checks
critical
86013F5 Networks BIG-IP : Expat vulnerabilities (K16949)NessusF5 Networks Local Security Checks
medium
80749Oracle Solaris Third-Party Patch Update : python (multiple_vulnerabilities_in_python) (BEAST)NessusSolaris Local Security Checks
medium
80669Oracle Solaris Third-Party Patch Update : libexpat (multiple_resource_management_error_vulnerabilities)NessusSolaris Local Security Checks
medium
79862ESXi 5.1 < Build 2323236 Third-Party Libraries Multiple Vulnerabilities (remote check) (BEAST)NessusMisc.
medium
70561Mac OS X 10.x < 10.9 Multiple Vulnerabilities (BEAST)NessusMacOS X Local Security Checks
high
69696Amazon Linux AMI : expat (ALAS-2012-89)NessusAmazon Linux Local Security Checks
medium
68543Oracle Linux 5 / 6 : expat (ELSA-2012-0731)NessusOracle Linux Local Security Checks
medium
64127SuSE 11.1 Security Update : expat (SAT Patch Number 6200)NessusSuSE Local Security Checks
medium
62944VMSA-2012-0016 : VMware security updates for vSphere API and ESX Service ConsoleNessusVMware ESX Local Security Checks
high
62620Ubuntu 8.04 LTS : python2.4 vulnerabilities (USN-1613-2)NessusUbuntu Local Security Checks
medium
62619Ubuntu 8.04 LTS : python2.5 vulnerabilities (USN-1613-1)NessusUbuntu Local Security Checks
medium
62287GLSA-201209-06 : Expat: Multiple vulnerabilitiesNessusGentoo Local Security Checks
medium
62036Ubuntu 10.04 LTS / 11.04 / 11.10 / 12.04 LTS : xmlrpc-c vulnerabilities (USN-1527-2)NessusUbuntu Local Security Checks
medium
61956Mandriva Linux Security Advisory : python (MDVSA-2012:097)NessusMandriva Local Security Checks
medium
61485Ubuntu 8.04 LTS / 10.04 LTS / 11.04 / 11.10 / 12.04 LTS : expat vulnerabilities (USN-1527-1)NessusUbuntu Local Security Checks
medium
61441Debian DSA-2525-1 : expat - several vulnerabilitiesNessusDebian Local Security Checks
medium
61327Scientific Linux Security Update : expat on SL5.x, SL6.x i386/x86_64 (20120613)NessusScientific Linux Local Security Checks
medium
59639SuSE 10 Security Update : expat (ZYPP Patch Number 8015)NessusSuSE Local Security Checks
medium
59635Mandriva Linux Security Advisory : python (MDVSA-2012:096)NessusMandriva Local Security Checks
medium
59491RHEL 5 / 6 : expat (RHSA-2012:0731)NessusRed Hat Local Security Checks
medium
59482CentOS 5 / 6 : expat (CESA-2012:0731)NessusCentOS Local Security Checks
medium
58924Fedora 16 : expat-2.1.0-1.fc16 (2012-5058)NessusFedora Local Security Checks
medium
58506Mandriva Linux Security Advisory : expat (MDVSA-2012:041)NessusMandriva Local Security Checks
medium