CVE-2009-3720

Опубликовано: 03 нояб. 2009

Источник: nvd

CVSS2: 5

EPSS Низкий

Описание

The updatePosition function in lib/xmltok_impl.c in libexpat in Expat 2.0.1, as used in Python, PyXML, w3c-libwww, and other software, allows context-dependent attackers to cause a denial of service (application crash) via an XML document with crafted UTF-8 sequences that trigger a buffer over-read, a different vulnerability than CVE-2009-2625.

Ссылки

http://expat.cvs.sourceforge.net/viewvc/expat/expat/lib/xmltok_impl.c?r1=1.13&r2=1.15&view=patch
Exploit
http://expat.cvs.sourceforge.net/viewvc/expat/expat/lib/xmltok_impl.c?view=log
Mailing List
Third Party Advisory
http://lists.fedoraproject.org/pipermail/package-announce/2010-November/051228.html
Third Party Advisory
http://lists.fedoraproject.org/pipermail/package-announce/2010-November/051247.html
Mailing List
Third Party Advisory
http://lists.fedoraproject.org/pipermail/package-announce/2010-November/051367.html
Third Party Advisory
http://lists.fedoraproject.org/pipermail/package-announce/2010-November/051405.html
Third Party Advisory
http://lists.fedoraproject.org/pipermail/package-announce/2010-November/051442.html
Third Party Advisory
http://lists.opensuse.org/opensuse-security-announce/2009-11/msg00004.html
Third Party Advisory
http://lists.opensuse.org/opensuse-security-announce/2010-05/msg00001.html
Third Party Advisory
VDB Entry
http://lists.opensuse.org/opensuse-security-announce/2010-05/msg00002.html
Third Party Advisory
VDB Entry
http://lists.opensuse.org/opensuse-security-announce/2010-06/msg00001.html
Third Party Advisory
VDB Entry
http://lists.opensuse.org/opensuse-security-announce/2010-08/msg00001.html
Third Party Advisory
VDB Entry
http://lists.vmware.com/pipermail/security-announce/2010/000082.html
Broken Link
http://mail.python.org/pipermail/expat-bugs/2009-January/002781.html
Third Party Advisory
http://marc.info/?l=bugtraq&m=130168502603566&w=2
Mailing List
Third Party Advisory
http://secunia.com/advisories/37324
Broken Link
http://secunia.com/advisories/37537
Broken Link
http://secunia.com/advisories/37925
Broken Link
http://secunia.com/advisories/38050
Broken Link
http://secunia.com/advisories/38231
Broken Link

Уязвимые конфигурации

Конфигурация 1

Одновременно

cpe:2.3:a:libexpat_project:libexpat:2.0.1:*:*:*:*:*:*:*

Одно из

cpe:2.3:a:a_m_kuchling:pyxml:*:*:*:*:*:*:*:*

cpe:2.3:a:python:python:*:*:*:*:*:*:*:*

Конфигурация 2

Одно из

cpe:2.3:a:apache:http_server:*:*:*:*:*:*:*:*

Версия от 2.0.35 (включая) до 2.0.64 (исключая)

cpe:2.3:a:apache:http_server:*:*:*:*:*:*:*:*

Версия от 2.2.0 (включая) до 2.2.17 (исключая)

EPSS

Процентиль: 72%

0.00762

Низкий

5 Medium

CVSS2

Дефекты

NVD-CWE-noinfo

Связанные уязвимости

CVE-2009-3720

ubuntu

больше 15 лет назад

CVE-2009-3720

redhat

больше 16 лет назад

CVE-2009-3720

debian

больше 15 лет назад

The updatePosition function in lib/xmltok_impl.c in libexpat in Expat ...

GHSA-pj3x-74qr-vrr4

github

около 3 лет назад

ELSA-2010-0002

oracle-oval

больше 15 лет назад

ELSA-2010-0002: PyXML security update (MODERATE)

EPSS

Процентиль: 72%

0.00762

Низкий

5 Medium

CVSS2

Дефекты

NVD-CWE-noinfo