XML External Entity injection in Libxml2
| Risk | Low |
| Patch available | YES |
| Number of vulnerabilities | 1 |
| CVE-ID | CVE-2016-9318 |
| CWE-ID | CWE-611 |
| Exploitation vector | Local |
| Public exploit | N/A |
| Vulnerable software |
Libxml2 Universal components / Libraries / Libraries used by multiple products |
| Vendor | Gnome Development Team |
Security Bulletin
This security bulletin contains one low risk vulnerability.
1) XML External Entity injection
EUVDB-ID: #VU31830
Risk: Low
CVSSv4.0: 5.7 [CVSS:4.0/AV:L/AC:L/AT:N/PR:N/UI:A/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]
CVE-ID: CVE-2016-9318
CWE-ID:
CWE-611 - Improper Restriction of XML External Entity Reference ('XXE')
Exploit availability: No
DescriptionThe vulnerability allows a local non-authenticated attacker to execute arbitrary code.
libxml2 2.9.4 and earlier, as used in XMLSec 1.2.23 and earlier and other products, does not offer a flag directly indicating that the current document may be read but other files may not be opened, which makes it easier for remote attackers to conduct XML External Entity (XXE) attacks via a crafted document.
MitigationInstall update from vendor's website.
Vulnerable software versionsLibxml2: 6.0.19
CPE2.3 External linkshttps://www.securityfocus.com/bid/94347
https://bugzilla.gnome.org/show_bug.cgi?id=772726
https://github.com/lsh123/xmlsec/issues/43
https://security.gentoo.org/glsa/201711-01
https://usn.ubuntu.com/3739-1/
https://usn.ubuntu.com/3739-2/
Q & A
Can this vulnerability be exploited remotely?
No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.
Is there known malware, which exploits this vulnerability?
No. We are not aware of malware exploiting this vulnerability.
