CVE-2013-0340

MEDIUM

Description

expat 2.1.0 and earlier does not properly handle entities expansion unless an application developer uses the XML_SetEntityDeclHandler function, which allows remote attackers to cause a denial of service (resource consumption), send HTTP requests to intranet servers, or read arbitrary files via a crafted XML document, aka an XML External Entity (XXE) issue. NOTE: it could be argued that because expat already provides the ability to disable external entity expansion, the responsibility for resolving this issue lies with application developers; according to this argument, this entry should be REJECTed, and each affected application would need its own CVE.

References

http://openwall.com/lists/oss-security/2013/02/22/3

http://securitytracker.com/id?1028213

http://www.openwall.com/lists/oss-security/2013/04/12/6

http://www.osvdb.org/90634

http://www.securityfocus.com/bid/58233

https://security.gentoo.org/glsa/201701-21

Details

Source: MITRE

Published: 2014-01-21

Updated: 2017-07-01

Type: CWE-264

Risk Information

CVSS v2.0

Base Score: 6.8

Vector: AV:N/AC:M/Au:N/C:P/I:P/A:P

Impact Score: 6.4

Exploitability Score: 8.6

Severity: MEDIUM