ID CVE-2017-9233
Summary XML External Entity vulnerability in libexpat 2.2.0 and earlier (Expat XML Parser Library) allows attackers to put the parser in an infinite loop using a malformed external entity definition from an external DTD.
References
Vulnerable Configurations
  • cpe:2.3:a:libexpat_project:libexpat:2.2.0
    cpe:2.3:a:libexpat_project:libexpat:2.2.0
CVSS
Base: 5.0
Impact:
Exploitability:
CWE CWE-611
CAPEC
nessus via4
  • NASL family MacOS X Local Security Checks
    NASL id MACOS_10_13.NASL
    description The remote host is running a version of Mac OS X that is prior to 10.10.5, 10.11.x prior to 10.11.6, 10.12.x prior to 10.12.6, or is not macOS 10.13. It is, therefore, affected by multiple vulnerabilities in the following components : - apache - AppSandbox - AppleScript - Application Firewall - ATS - Audio - CFNetwork - CFNetwork Proxies - CFString - Captive Network Assistant - CoreAudio - CoreText - DesktopServices - Directory Utility - file - Fonts - fsck_msdos - HFS - Heimdal - HelpViewer - IOFireWireFamily - ImageIO - Installer - Kernel - kext tools - libarchive - libc - libexpat - Mail - Mail Drafts - ntp - Open Scripting Architecture - PCRE - Postfix - Quick Look - QuickTime - Remote Management - SQLite - Sandbox - Screen Lock - Security - Spotlight - WebKit - zlib Note that successful exploitation of the most serious issues can result in arbitrary code execution.
    last seen 2019-02-21
    modified 2018-07-14
    plugin id 103598
    published 2017-10-03
    reporter Tenable
    source https://www.tenable.com/plugins/index.php?view=single&id=103598
    title macOS < 10.13 Multiple Vulnerabilities
  • NASL family Slackware Local Security Checks
    NASL id SLACKWARE_SSA_2017-266-02.NASL
    description New python packages are available for Slackware 14.0, 14.1, 14.2, and -current to fix a security issue.
    last seen 2018-09-01
    modified 2017-09-25
    plugin id 103424
    published 2017-09-25
    reporter Tenable
    source https://www.tenable.com/plugins/index.php?view=single&id=103424
    title Slackware 14.0 / 14.1 / 14.2 / current : python (SSA:2017-266-02)
  • NASL family FreeBSD Local Security Checks
    NASL id FREEBSD_PKG_8719B9358BAE41AD92BA3C826F651219.NASL
    description python release notes : Multiple vulnerabilities has been fixed in this release. Please refer to the CVE list for details.
    last seen 2019-02-21
    modified 2018-11-10
    plugin id 109594
    published 2018-05-07
    reporter Tenable
    source https://www.tenable.com/plugins/index.php?view=single&id=109594
    title FreeBSD : python 2.7 -- multiple vulnerabilities (8719b935-8bae-41ad-92ba-3c826f651219)
  • NASL family Slackware Local Security Checks
    NASL id SLACKWARE_SSA_2018-124-01.NASL
    description New python packages are available for Slackware 14.0, 14.1, 14.2, and -current to fix security issues.
    last seen 2018-09-02
    modified 2018-05-07
    plugin id 109583
    published 2018-05-07
    reporter Tenable
    source https://www.tenable.com/plugins/index.php?view=single&id=109583
    title Slackware 14.0 / 14.1 / 14.2 / current : python (SSA:2018-124-01)
  • NASL family FreeBSD Local Security Checks
    NASL id FREEBSD_PKG_9164F51EAE2011E7A633009C02A2AB30.NASL
    description Python reports : Multiple vulnerabilities have been fixed in Python 2.7.14. Please refer to the CVE list for details.
    last seen 2019-02-21
    modified 2018-11-10
    plugin id 103796
    published 2017-10-12
    reporter Tenable
    source https://www.tenable.com/plugins/index.php?view=single&id=103796
    title FreeBSD : Python 2.7 -- multiple vulnerabilities (9164f51e-ae20-11e7-a633-009c02a2ab30)
  • NASL family Debian Local Security Checks
    NASL id DEBIAN_DSA-3898.NASL
    description Multiple vulnerabilities have been discovered in Expat, an XML parsing C library. The Common Vulnerabilities and Exposures project identifies the following problems : - CVE-2016-9063 Gustavo Grieco discovered an integer overflow flaw during parsing of XML. An attacker can take advantage of this flaw to cause a denial of service against an application using the Expat library. - CVE-2017-9233 Rhodri James discovered an infinite loop vulnerability within the entityValueInitProcessor() function while parsing malformed XML in an external entity. An attacker can take advantage of this flaw to cause a denial of service against an application using the Expat library.
    last seen 2019-02-21
    modified 2018-11-10
    plugin id 101035
    published 2017-06-26
    reporter Tenable
    source https://www.tenable.com/plugins/index.php?view=single&id=101035
    title Debian DSA-3898-1 : expat - security update
  • NASL family SuSE Local Security Checks
    NASL id SUSE_SU-2017-2375-1.NASL
    description This update for expat fixes the following issues : - CVE-2016-9063: Possible integer overflow to fix inside XML_Parse leading to unexpected behaviour (bsc#1047240) - CVE-2017-9233: External Entity Vulnerability could lead to denial of service (bsc#1047236) Note that Tenable Network Security has extracted the preceding description block directly from the SUSE security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues.
    last seen 2019-02-21
    modified 2018-11-30
    plugin id 102989
    published 2017-09-07
    reporter Tenable
    source https://www.tenable.com/plugins/index.php?view=single&id=102989
    title SUSE SLES11 Security Update : expat (SUSE-SU-2017:2375-1)
  • NASL family Fedora Local Security Checks
    NASL id FEDORA_2017-2C5635CD97.NASL
    description https://github.com/libexpat/libexpat/blob/R_2_2_1/expat/Changes Note that Tenable Network Security has extracted the preceding description block directly from the Fedora update system website. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues.
    last seen 2019-02-21
    modified 2018-09-05
    plugin id 101499
    published 2017-07-13
    reporter Tenable
    source https://www.tenable.com/plugins/index.php?view=single&id=101499
    title Fedora 25 : expat (2017-2c5635cd97)
  • NASL family Fedora Local Security Checks
    NASL id FEDORA_2017-A44F9AA38B.NASL
    description https://github.com/libexpat/libexpat/blob/R_2_2_1/expat/Changes Note that Tenable Network Security has extracted the preceding description block directly from the Fedora update system website. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues.
    last seen 2019-02-21
    modified 2018-09-05
    plugin id 101509
    published 2017-07-13
    reporter Tenable
    source https://www.tenable.com/plugins/index.php?view=single&id=101509
    title Fedora 24 : expat (2017-a44f9aa38b)
  • NASL family SuSE Local Security Checks
    NASL id OPENSUSE-2017-993.NASL
    description This update for expat fixes the following issues : - CVE-2016-9063: Possible integer overflow to fix inside XML_Parse leading to unexpected behaviour (bsc#1047240) - CVE-2017-9233: External Entity Vulnerability could lead to denial of service (bsc#1047236) This update was imported from the SUSE:SLE-12:Update update project.
    last seen 2019-02-21
    modified 2018-09-04
    plugin id 102946
    published 2017-09-05
    reporter Tenable
    source https://www.tenable.com/plugins/index.php?view=single&id=102946
    title openSUSE Security Update : expat (openSUSE-2017-993)
  • NASL family Fedora Local Security Checks
    NASL id FEDORA_2017-18601AD5D2.NASL
    description https://github.com/libexpat/libexpat/blob/R_2_2_1/expat/Changes Note that Tenable Network Security has extracted the preceding description block directly from the Fedora update system website. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues.
    last seen 2019-02-21
    modified 2018-09-05
    plugin id 101578
    published 2017-07-17
    reporter Tenable
    source https://www.tenable.com/plugins/index.php?view=single&id=101578
    title Fedora 26 : expat (2017-18601ad5d2)
  • NASL family FreeBSD Local Security Checks
    NASL id FREEBSD_PKG_E375FF3F7FEC11E8808828D244AEE256.NASL
    description Mitre reports : An integer overflow during the parsing of XML using the Expat library. XML External Entity vulnerability in libexpat 2.2.0 and earlier (Expat XML Parser Library) allows attackers to put the parser in an infinite loop using a malformed external entity definition from an external DTD.
    last seen 2019-02-21
    modified 2018-11-10
    plugin id 110934
    published 2018-07-06
    reporter Tenable
    source https://www.tenable.com/plugins/index.php?view=single&id=110934
    title FreeBSD : expat -- multiple vulnerabilities (e375ff3f-7fec-11e8-8088-28d244aee256)
  • NASL family Slackware Local Security Checks
    NASL id SLACKWARE_SSA_2017-199-01.NASL
    description New expat packages are available for Slackware 13.0, 13.1, 13.37, 14.0, 14.1, 14.2, and -current to fix security issues.
    last seen 2019-02-21
    modified 2018-01-26
    plugin id 101789
    published 2017-07-19
    reporter Tenable
    source https://www.tenable.com/plugins/index.php?view=single&id=101789
    title Slackware 13.0 / 13.1 / 13.37 / 14.0 / 14.1 / 14.2 / current : expat (SSA:2017-199-01)
  • NASL family SuSE Local Security Checks
    NASL id SUSE_SU-2017-2299-1.NASL
    description This update for expat fixes the following issues : - CVE-2016-9063: Possible integer overflow to fix inside XML_Parse leading to unexpected behaviour (bsc#1047240) - CVE-2017-9233: External Entity Vulnerability could lead to denial of service (bsc#1047236) Note that Tenable Network Security has extracted the preceding description block directly from the SUSE security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues.
    last seen 2019-02-21
    modified 2018-11-30
    plugin id 102854
    published 2017-08-31
    reporter Tenable
    source https://www.tenable.com/plugins/index.php?view=single&id=102854
    title SUSE SLED12 / SLES12 Security Update : expat (SUSE-SU-2017:2299-1)
  • NASL family Debian Local Security Checks
    NASL id DEBIAN_DLA-990.NASL
    description It was discovered that there was an infinite loop vulnerability in expat, a XML parsing C library : https://libexpat.github.io/doc/cve-2017-9233/ For Debian 7 'Wheezy', this issue has been fixed in expat version 2.1.0-1+deb7u5. We recommend that you upgrade your expat packages. NOTE: Tenable Network Security has extracted the preceding description block directly from the DLA security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues.
    last seen 2019-02-21
    modified 2018-07-09
    plugin id 100850
    published 2017-06-19
    reporter Tenable
    source https://www.tenable.com/plugins/index.php?view=single&id=100850
    title Debian DLA-990-1 : expat security update
  • NASL family Ubuntu Local Security Checks
    NASL id UBUNTU_USN-3356-1.NASL
    description It was discovered that Expat incorrectly handled certain external entities. A remote attacker could possibly use this issue to cause Expat to hang, resulting in a denial of service. Note that Tenable Network Security has extracted the preceding description block directly from the Ubuntu security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues.
    last seen 2019-02-21
    modified 2018-12-01
    plugin id 101835
    published 2017-07-20
    reporter Tenable
    source https://www.tenable.com/plugins/index.php?view=single&id=101835
    title Ubuntu 14.04 LTS / 16.04 LTS / 16.10 / 17.04 : expat vulnerability (USN-3356-1)
refmap via4
bid 99276
confirm
debian DSA-3898
mlist [oss-security] 20170618 Expat 2.2.1 security fixes
sectrack 1039427
Last major update 25-07-2017 - 16:29
Published 25-07-2017 - 16:29
Last modified 27-03-2019 - 13:29
Back to Top