CVE-2017-9233

Description

XML External Entity vulnerability in libexpat 2.2.0 and earlier (Expat XML Parser Library) allows attackers to put the parser in an infinite loop using a malformed external entity definition from an external DTD.

CVSS Metrics

• v3.1•HIGH•Score: 7.5CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
• v2.0•MEDIUM•Score: 5AV:N/AC:L/Au:N/C:N/I:N/A:P

EPSS Trends

Current EPSS score: 0.22%• Percentile: 44%

Techniques & Countermeasures

• CWE-611•Improper Restriction of XML External Entity Reference

  The product processes an XML document that can contain XML entities with URIs that resolve to documents outside of the intended sphere of control, causing the product to embed incorrect documents into its output.

• CWE-835•Loop with Unreachable Exit Condition ('Infinite Loop')

  The product contains an iteration or loop with an exit condition that cannot be reached, i.e., an infinite loop.

Affected Systems

• debian•debian_linux

  8.0 | 9.0 | 10.0

• libexpat_project•libexpat

  ≤ 2.2.0

• python•python

  ≥ 2.7.0, < 2.7.15 | ≥ 3.3.0, < 3.3.7 | ≥ 3.4.0, < 3.4.7 | ≥ 3.5.0, < 3.5.4 | ≥ 3.6.0, < 3.6.2

References (13)

• https://support.apple.com/HT208144
• https://libexpat.github.io/doc/cve-2017-9233/
• https://github.com/libexpat/libexpat/blob/master/expat/Changes
• http://www.securitytracker.com/id/1039427
• https://support.apple.com/HT208113
• https://support.apple.com/HT208112
• https://support.apple.com/HT208115
• http://www.debian.org/security/2017/dsa-3898
• http://www.securityfocus.com/bid/99276
• http://www.openwall.com/lists/oss-security/2017/06/17/7
• https://support.f5.com/csp/article/K03244804
• https://lists.apache.org/thread.html/rf4c02775860db415b4955778a131c2795223f61cb8c6a450893651e4%40%3Cissues.bookkeeper.apache.org%3E
• https://lists.apache.org/thread.html/r58af02e294bd07f487e2c64ffc0a29b837db5600e33b6e698b9d696b%40%3Cissues.bookkeeper.apache.org%3E