CVE-2015-7995

medium
New! CVE Severity Now Using CVSS v3

The calculated severity for CVEs has been updated to use CVSS v3 by default. CVEs that do not have a CVSS v3 score will fall back CVSS v2 for calculating severity. Severity display preferences can be toggled in the settings dropdown.

Description

The xsltStylePreCompute function in preproc.c in libxslt 1.1.28 does not check if the parent node is an element, which allows attackers to cause a denial of service via a crafted XML file, related to a "type confusion" issue.

References

http://lists.apple.com/archives/security-announce/2016/Jan/msg00002.html

http://lists.apple.com/archives/security-announce/2016/Jan/msg00003.html

http://lists.apple.com/archives/security-announce/2016/Jan/msg00005.html

http://lists.apple.com/archives/security-announce/2016/Mar/msg00001.html

http://lists.opensuse.org/opensuse-updates/2016-05/msg00123.html

http://www.debian.org/security/2016/dsa-3605

http://www.openwall.com/lists/oss-security/2015/10/27/10

http://www.openwall.com/lists/oss-security/2015/10/28/4

http://www.oracle.com/technetwork/topics/security/bulletinjan2016-2867206.html

http://www.securityfocus.com/bid/77325

http://www.securitytracker.com/id/1034736

http://www.securitytracker.com/id/1038623

http://www.slackware.com/security/viewer.php?l=slackware-security&y=2016&m=slackware-security.386546

https://bugzilla.redhat.com/show_bug.cgi?id=1257962

https://git.gnome.org/browse/libxslt/commit/?id=7ca19df892ca22d9314e95d59ce2abdeff46b617

https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c05111017

https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c05158380

https://puppet.com/security/cve/cve-2015-7995

https://support.apple.com/HT205729

https://support.apple.com/HT205731

https://support.apple.com/HT205732

https://support.apple.com/HT206168

Details

Source: MITRE

Published: 2015-11-17

Updated: 2019-03-08

Risk Information

CVSS v2

Base Score: 5

Vector: AV:N/AC:L/Au:N/C:N/I:N/A:P

Impact Score: 2.9

Exploitability Score: 10

Severity: MEDIUM

Vulnerable Software

Configuration 1

OR

cpe:2.3:o:apple:iphone_os:*:*:*:*:*:*:*:* versions up to 9.2 (inclusive)

cpe:2.3:o:apple:mac_os_x:*:*:*:*:*:*:*:* versions up to 10.11.2 (inclusive)

cpe:2.3:o:apple:tvos:*:*:*:*:*:*:*:* versions up to 9.1 (inclusive)

cpe:2.3:o:apple:watchos:*:*:*:*:*:*:*:* versions up to 2.1 (inclusive)

Configuration 2

OR

cpe:2.3:a:xmlsoft:libxslt:*:*:*:*:*:*:*:* versions up to 1.1.28 (inclusive)

Tenable Plugins

View all (25 total)

IDNameProductFamilySeverity
135571EulerOS Virtualization 3.0.2.2 : libxslt (EulerOS-SA-2020-1442)NessusHuawei Local Security Checks
critical
134504EulerOS Virtualization for ARM 64 3.0.2.0 : libxslt (EulerOS-SA-2020-1215)NessusHuawei Local Security Checks
high
132162EulerOS 2.0 SP3 : libxslt (EulerOS-SA-2019-2627)NessusHuawei Local Security Checks
critical
131672EulerOS 2.0 SP2 : libxslt (EulerOS-SA-2019-2519)NessusHuawei Local Security Checks
critical
130674EulerOS 2.0 SP5 : libxslt (EulerOS-SA-2019-2212)NessusHuawei Local Security Checks
high
100367openSUSE Security Update : libxslt (openSUSE-2017-609)NessusSuSE Local Security Checks
high
100243SUSE SLED12 / SLES12 Security Update : libxslt (SUSE-SU-2017:1313-1)NessusSuSE Local Security Checks
high
100208SUSE SLES11 Security Update : libxslt (SUSE-SU-2017:1282-1)NessusSuSE Local Security Checks
high
99725Ubuntu 12.04 LTS / 14.04 LTS / 16.04 LTS / 16.10 / 17.04 : libxslt vulnerabilities (USN-3271-1)NessusUbuntu Local Security Checks
high
91693Debian DSA-3605-1 : libxslt - security updateNessusDebian Local Security Checks
high
91578Debian DLA-514-1 : libxslt security updateNessusDebian Local Security Checks
high
91408openSUSE Security Update : libxslt (openSUSE-2016-661)NessusSuSE Local Security Checks
medium
91354Slackware 14.0 / 14.1 / current : libxslt (SSA:2016-148-02)NessusSlackware Local Security Checks
medium
9335Apple TV < 9.1.1 Multiple VulnerabilitiesNessus Network MonitorInternet Services
high
9333Apple TV < 7.2.1 Multiple VulnerabilitiesNessus Network MonitorInternet Services
low
9326Mac OS X 10.11.x < 10.11.3 Multiple VulnerabilitiesNessus Network MonitorOperating System Detection
high
9330Apple iOS < 9.2.1 Multiple VulnerabilitiesNessus Network MonitorMobile Devices
high
91222HP System Management Homepage Multiple Vulnerabilities (HPSBMU03593)NessusWeb Servers
critical
90705Splunk Enterprise < 5.0.15 / 6.0.11 / 6.1.10 / 6.2.9 / 6.3.3.4 or Splunk Light < 6.2.9 / 6.3.3.4 Multiple Vulnerabilities (DROWN)NessusCGI abuses
critical
90315Apple TV < 7.2.1 Multiple VulnerabilitiesNessusMisc.
critical
88418Apple TV < 9.1.1 Multiple VulnerabilitiesNessusMisc.
high
88050Apple iOS < 9.2.1 Multiple VulnerabilitiesNessusMobile Devices
high
88048Mac OS X Libxslt Function Type Confusion RCE (Security Update 2016-001)NessusMacOS X Local Security Checks
high
88047Mac OS X 10.11.x < 10.11.3 Multiple VulnerabilitiesNessusMacOS X Local Security Checks
high
87001FreeBSD : libxslt -- DoS vulnerability due to type confusing error (ecc268f2-8fc2-11e5-918c-bcaec565249c)NessusFreeBSD Local Security Checks
medium