Skip to main content

Icewall Federation Agent CVE-2016-4447

HIGH
Buffer Overflow (CWE-119)
2016-06-09 secalert@redhat.com
7.5
CVSS 3.0 · NVD
Share

Severity by source

NVD PRIMARY
7.5 HIGH
AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

Primary rating from NVD · only source for this CVE.

CVSS VectorNVD

CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
Attack Vector
Network
Attack Complexity
Low
Privileges Required
None
User Interaction
None
Scope
Unchanged
Confidentiality
None
Integrity
None
Availability
High

Lifecycle Timeline

1
CVE Published
Jun 09, 2016 - 16:59 cve.org
HIGH 7.5

DescriptionCVE.org

The xmlParseElementDecl function in parser.c in libxml2 before 2.9.4 allows context-dependent attackers to cause a denial of service (heap-based buffer underread and application crash) via a crafted file, involving xmlParseName.

AnalysisAI

The xmlParseElementDecl function in parser.c in libxml2 before 2.9.4 allows context-dependent attackers to cause a denial of service (heap-based buffer underread and application crash) via a crafted. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available.

Technical ContextAI

This vulnerability is classified as Buffer Overflow (CWE-119), which allows attackers to corrupt memory to execute arbitrary code or crash the application. The xmlParseElementDecl function in parser.c in libxml2 before 2.9.4 allows context-dependent attackers to cause a denial of service (heap-based buffer underread and application crash) via a crafted file, involving xmlParseName. Affected products include: Hp Icewall Federation Agent, Canonical Ubuntu Linux, Debian Debian Linux, Oracle Vm Server, Apple Itunes. Version information: before 2.9.4.

RemediationAI

A vendor patch is available. Apply the latest security update as soon as possible. Use memory-safe languages or bounds-checking. Enable ASLR, DEP/NX, stack canaries. Use safe string functions.

CVE-2016-2182 CRITICAL
9.8 Sep 16

The BN_bn2dec function in crypto/bn/bn_print.c in OpenSSL before 1.1.0 does not properly validate division results, whic

CVE-2015-7942 MEDIUM POC
6.8 Nov 18

The xmlParseConditionalSections function in parser.c in libxml2 does not properly skip intermediary entities when it sto

CVE-2016-4448 CRITICAL
9.8 Jun 09

Format string vulnerability in libxml2 before 2.9.4 allows attackers to have unspecified impact via format string specif

CVE-2015-8317 MEDIUM POC
5.0 Dec 15

The xmlParseXMLDecl function in parser.c in libxml2 before 2.9.3 allows context-dependent attackers to obtain sensitive

CVE-2016-3705 HIGH
7.5 May 17

The (1) xmlParserEntityCheck and (2) xmlParseAttValueComplex functions in parser.c in libxml2 2.9.3 do not properly keep

CVE-2016-3627 HIGH
7.5 May 17

The xmlStringGetNodeList function in tree.c in libxml2 2.9.3 and earlier, when used in recovery mode, allows context-dep

CVE-2016-6306 MEDIUM
5.9 Sep 26

The certificate parser in OpenSSL before 1.0.1u and 1.0.2 before 1.0.2i might allow remote attackers to cause a denial o

CVE-2015-5312 HIGH
7.1 Dec 15

The xmlStringLenDecodeEntities function in parser.c in libxml2 before 2.9.3 does not properly prevent entity expansion,

CVE-2015-8241 MEDIUM
6.4 Dec 15

The xmlNextChar function in libxml2 2.9.2 does not properly check the state, which allows context-dependent attackers to

CVE-2015-8242 MEDIUM
5.8 Dec 15

The xmlSAX2TextNode function in SAX2.c in the push interface in the HTML parser in libxml2 before 2.9.3 allows context-d

CVE-2015-7498 MEDIUM
5.0 Dec 15

Heap-based buffer overflow in the xmlParseXmlDecl function in parser.c in libxml2 before 2.9.3 allows context-dependent

CVE-2015-7497 MEDIUM
5.0 Dec 15

Heap-based buffer overflow in the xmlDictComputeFastQKey function in dict.c in libxml2 before 2.9.3 allows context-depen

Share

CVE-2016-4447 vulnerability details – vuln.today

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy