Attacker Value

Unknown

(0 users assessed)

Exploitability

Unknown

(0 users assessed)

User Interaction

None

Privileges Required

None

Attack Vector

Network

0

CVE-2016-3627

Disclosure Date: May 17, 2016 •

CVE-2016-3627 CVSS v3 Base Score: 7.5

MITRE ATT&CK

Add MITRE ATT&CK tactics and techniques that apply to this CVE.

Description

The xmlStringGetNodeList function in tree.c in libxml2 2.9.3 and earlier, when used in recovery mode, allows context-dependent attackers to cause a denial of service (infinite recursion, stack consumption, and application crash) via a crafted XML document.

Add Assessment

No one has assessed this topic. Be the first to add your voice to the community.

CVSS V3 Severity and Metrics

Data provided by the National Vulnerability Database (NVD)

Base Score:

7.5 High

Impact Score:

3.6

Exploitability Score:

3.9

Vector:

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

Attack Vector (AV):

Network

Attack Complexity (AC):

Low

Privileges Required (PR):

None

User Interaction (UI):

None

Scope (S):

Unchanged

Confidentiality (C):

None

Integrity (I):

None

Availability (A):

High

Vendors

canonical,
debian,
hp,
opensuse,
oracle,
redhat,
xmlsoft

Products

debian linux 8.0,
enterprise linux desktop 6.0,
enterprise linux desktop 7.0,
enterprise linux eus 7.2,
enterprise linux eus 7.3,
enterprise linux eus 7.4,
enterprise linux eus 7.5,
enterprise linux eus 7.6,
enterprise linux eus 7.7,
enterprise linux server 6.0,
enterprise linux server 7.0,
enterprise linux server aus 7.2,
enterprise linux server aus 7.4,
enterprise linux server aus 7.6,
enterprise linux workstation 6.0,
enterprise linux workstation 7.0,
icewall federation agent 3.0,
icewall file manager 3.0,
jboss core services -,
leap 42.1,
libxml2,
solaris 11.3,
ubuntu linux 12.04,
ubuntu linux 14.04,
ubuntu linux 15.10,
ubuntu linux 16.04,
vm server 3.3,
vm server 3.4

References

Canonical

CVE-2016-3627 (https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3627)

BID-84992 (http://www.securityfocus.com/bid/84992)

Advisory

20160503 CVE-2016-3627 CVE-2016-3705: libxml2: stack overflow in xml validator (parser) (http://seclists.org/fulldisclosure/2016/May/10)

http://www.oracle.com/technetwork/topics/security/ovmbulletinjul2016-3090546.html

https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c05157239

https://kc.mcafee.com/corporate/index?page=content&id=SB10170

http://lists.opensuse.org/opensuse-updates/2016-05/msg00127.html

http://lists.opensuse.org/opensuse-updates/2016-05/msg00055.html

https://access.redhat.com/errata/RHSA-2016:1292

[oss-security] 20160321 CVE request: Stack exhaustion in libxml2 parsing xml files in recover mode (http://www.openwall.com/lists/oss-security/2016/03/21/2)

http://www.oracle.com/technetwork/topics/security/linuxbulletinjul2016-3090544.html

DSA-3593 (https://www.debian.org/security/2016/dsa-3593)

SECTRACK-1035335 (http://www.securitytracker.com/id/1035335)

USN-2994-1 (http://www.ubuntu.com/usn/USN-2994-1)

http://www.oracle.com/technetwork/topics/security/bulletinjul2016-3090568.html

https://www.tenable.com/security/tns-2016-18

http://rhn.redhat.com/errata/RHSA-2016-2957.html

GLSA-201701-37 (https://security.gentoo.org/glsa/201701-37)

[oss-security] 20160321 Re: CVE request: Stack exhaustion in libxml2 parsing xml files in recover mode (http://www.openwall.com/lists/oss-security/2016/03/21/3)

Rapid7

Technical Analysis