ID CVE-2014-5265 Type cve Reporter NVD Modified 2015-11-25T15:38:42
Description
The Incutio XML-RPC (IXR) Library, as used in WordPress before 3.9.2 and Drupal 6.x before 6.33 and 7.x before 7.31, permits entity declarations without considering recursion during entity expansion, which allows remote attackers to cause a denial of service (memory and CPU consumption) via a crafted XML document containing a large number of nested entity references, a similar issue to CVE-2003-1564.
{"modified": "2015-11-25T15:38:42", "id": "CVE-2014-5265", "edition": 1, "objectVersion": "1.2", "cvss": {"score": 5.0, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:NONE/I:NONE/A:PARTIAL/"}, "history": [], "href": "https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2014-5265", "cvelist": ["CVE-2014-5265"], "references": ["https://www.drupal.org/SA-CORE-2014-004", "http://www.debian.org/security/2014/dsa-2999", "https://core.trac.wordpress.org/changeset/29404", "http://www.debian.org/security/2014/dsa-3001", "http://cgit.drupalcode.org/drupal/diff/includes/xmlrpc.inc?id=1849830", "https://wordpress.org/news/2014/08/wordpress-3-9-2/"], "bulletinFamily": "NVD", "lastseen": "2016-09-03T20:48:48", "title": "CVE-2014-5265", "published": "2014-08-18T07:15:27", "viewCount": 0, "type": "cve", "cpe": ["cpe:/a:wordpress:wordpress:3.7.1", "cpe:/a:drupal:drupal:7.0:dev", "cpe:/a:drupal:drupal:7.21", "cpe:/a:drupal:drupal:7.0:beta2", "cpe:/a:drupal:drupal:7.11", "cpe:/a:drupal:drupal:7.9", "cpe:/a:drupal:drupal:7.x-dev", "cpe:/a:drupal:drupal:6.1", "cpe:/a:drupal:drupal:7.19", "cpe:/a:drupal:drupal:6.5", "cpe:/a:drupal:drupal:7.5", "cpe:/a:drupal:drupal:6.9", "cpe:/a:drupal:drupal:6.10", "cpe:/a:wordpress:wordpress:3.1.1", "cpe:/a:wordpress:wordpress:3.8.1", "cpe:/a:drupal:drupal:7.16", "cpe:/a:wordpress:wordpress:3.0", "cpe:/a:wordpress:wordpress:3.6", "cpe:/a:drupal:drupal:7.0:rc2", "cpe:/a:wordpress:wordpress:3.0.3", "cpe:/a:drupal:drupal:6.2", "cpe:/a:drupal:drupal:6.18", "cpe:/a:drupal:drupal:7.20", "cpe:/a:drupal:drupal:6.0:rc4", "cpe:/a:drupal:drupal:7.18", "cpe:/a:drupal:drupal:6.8", "cpe:/a:drupal:drupal:6.14", "cpe:/a:drupal:drupal:6.22", "cpe:/a:drupal:drupal:7.0:alpha3", "cpe:/a:drupal:drupal:6.15", "cpe:/a:drupal:drupal:7.23", "cpe:/a:drupal:drupal:7.0:alpha5", "cpe:/a:drupal:drupal:7.0:rc1", "cpe:/a:drupal:drupal:7.10", "cpe:/a:drupal:drupal:6.3", "cpe:/a:drupal:drupal:7.27", "cpe:/a:wordpress:wordpress:3.1.3", "cpe:/a:wordpress:wordpress:3.2.1", "cpe:/a:drupal:drupal:6.0:beta4", "cpe:/a:drupal:drupal:6.24", "cpe:/a:drupal:drupal:6.4", "cpe:/a:wordpress:wordpress:3.5.0", "cpe:/a:wordpress:wordpress:3.3.3", "cpe:/a:drupal:drupal:6.0:rc3", "cpe:/a:drupal:drupal:7.13", "cpe:/a:drupal:drupal:7.7", "cpe:/a:wordpress:wordpress:3.1.2", "cpe:/a:wordpress:wordpress:3.4.1", "cpe:/a:wordpress:wordpress:3.0.6", "cpe:/a:drupal:drupal:6.23", "cpe:/a:drupal:drupal:6.16", "cpe:/a:drupal:drupal:6.29", "cpe:/a:drupal:drupal:7.12", "cpe:/a:drupal:drupal:7.0:alpha7", "cpe:/a:drupal:drupal:7.0:rc4", "cpe:/a:drupal:drupal:7.26", "cpe:/a:drupal:drupal:7.0:rc3", "cpe:/a:drupal:drupal:6.12", "cpe:/a:drupal:drupal:6.32", "cpe:/a:drupal:drupal:7.0:alpha2", "cpe:/a:wordpress:wordpress:3.7", "cpe:/a:drupal:drupal:7.2", "cpe:/a:wordpress:wordpress:3.9.0", "cpe:/a:drupal:drupal:7.1", "cpe:/a:drupal:drupal:7.30", "cpe:/a:drupal:drupal:7.3", "cpe:/a:drupal:drupal:6.27", "cpe:/a:drupal:drupal:6.0:rc1", "cpe:/a:wordpress:wordpress:3.3", "cpe:/a:wordpress:wordpress:3.2", "cpe:/a:drupal:drupal:7.0:alpha6", "cpe:/a:drupal:drupal:6.20", "cpe:/a:drupal:drupal:7.29", "cpe:/a:drupal:drupal:7.17", "cpe:/a:drupal:drupal:6.31", "cpe:/a:wordpress:wordpress:3.2:beta1", "cpe:/a:drupal:drupal:6.0:rc2", "cpe:/a:drupal:drupal:6.21", "cpe:/a:wordpress:wordpress:3.0.4", "cpe:/a:drupal:drupal:7.0:beta3", "cpe:/a:drupal:drupal:6.0:beta1", "cpe:/a:drupal:drupal:7.6", "cpe:/a:wordpress:wordpress:3.3.1", "cpe:/a:drupal:drupal:7.0:alpha4", "cpe:/a:drupal:drupal:7.24", "cpe:/a:drupal:drupal:7.4", "cpe:/a:drupal:drupal:6.25", "cpe:/a:drupal:drupal:7.25", "cpe:/a:drupal:drupal:7.8", "cpe:/a:drupal:drupal:6.0:beta3", "cpe:/a:wordpress:wordpress:3.1.4", "cpe:/a:drupal:drupal:7.14", "cpe:/a:wordpress:wordpress:3.3.2", "cpe:/a:drupal:drupal:6.7", "cpe:/a:drupal:drupal:7.15", "cpe:/a:drupal:drupal:7.28", "cpe:/a:drupal:drupal:6.6", "cpe:/a:wordpress:wordpress:3.0.1", "cpe:/a:wordpress:wordpress:3.4.2", "cpe:/a:wordpress:wordpress:3.0.2", "cpe:/o:debian:debian_linux:7.0", "cpe:/a:drupal:drupal:6.11", "cpe:/a:drupal:drupal:7.0:alpha1", "cpe:/a:wordpress:wordpress:3.5.1", "cpe:/a:drupal:drupal:6.0:beta2", "cpe:/a:wordpress:wordpress:3.4.0", "cpe:/a:drupal:drupal:7.0", "cpe:/a:drupal:drupal:7.0:beta1", "cpe:/a:drupal:drupal:7.22", "cpe:/a:drupal:drupal:6.28", "cpe:/a:drupal:drupal:6.17", "cpe:/a:drupal:drupal:6.0:dev", "cpe:/a:drupal:drupal:6.30", "cpe:/a:drupal:drupal:6.0", "cpe:/a:wordpress:wordpress:3.6.1", "cpe:/a:drupal:drupal:6.19", "cpe:/a:wordpress:wordpress:3.9.1", "cpe:/a:drupal:drupal:6.13", "cpe:/a:wordpress:wordpress:3.1", "cpe:/a:wordpress:wordpress:3.8", "cpe:/a:wordpress:wordpress:3.0.5", "cpe:/a:drupal:drupal:6.26"], "description": "The Incutio XML-RPC (IXR) Library, as used in WordPress before 3.9.2 and Drupal 6.x before 6.33 and 7.x before 7.31, permits entity declarations without considering recursion during entity expansion, which allows remote attackers to cause a denial of service (memory and CPU consumption) via a crafted XML document containing a large number of nested entity references, a similar issue to CVE-2003-1564.", "hash": "141faef4ec8ef07dc40efa3f5d7be070dff3a1da17ed287b74383c2276b735ba", "reporter": "NVD", "scanner": [], "assessment": {"system": "", "name": "", "href": ""}, "enchantments": {"vulnersScore": 6.8}}
{"result": {"nessus": [{"id": "DRUPAL_7_31.NASL", "type": "nessus", "title": "Drupal 6.x < 6.33 / 7.x < 7.31 XML-RPC DoS", "description": "The remote web server is running a version of Drupal that is 6.x prior to 6.33 or 7.x prior to 7.31. It is, therefore, potentially affected by multiple denial of service vulnerabilities :\n\n - The XML-RPC library in Drupal allows entity declarations without considering recursion during entity expansion.\n A remote attacker, using a crafted XML document with a large number of nested entity references, can cause a denial of service by consuming available memory and CPU resources. (CVE-2014-5265)\n\n - The XML-RPC library in Drupal does not limit the number of elements in an XML document. A remote attacker, via a large document, could cause a denial of service by CPU consumption. (CVE-2014-5266)\n\n - An XML injection flaw exists in 'xmlrpc.php' due to the parser accepting XML internal entities from untrusted sources. A remote attacker, via specially crafted XML data, could exploit this to cause a denial of service.\n This vulnerability also exists within the Drupal OpenID module.\n\nNote that Nessus has not tested for these issues but has instead relied only on the application's self-reported version number.", "published": "2014-08-13T00:00:00", "cvss": {"score": 5.0, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:NONE/I:NONE/A:PARTIAL/"}, "href": "https://www.tenable.com/plugins/index.php?view=single&id=77186", "cvelist": ["CVE-2014-5265", "CVE-2014-5266"], "lastseen": "2017-10-29T13:44:41"}, {"id": "FEDORA_2014-9278.NASL", "type": "nessus", "title": "Fedora 20 : drupal7-7.31-1.fc20 (2014-9278)", "description": "Update to upstream 7.31 release for SA-CORE-2014-004 This is a bugfix release. For complete details, refer to:\nhttps://www.drupal.org/drupal-7.30-release-notes\n\nNote that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues.", "published": "2014-08-22T00:00:00", "cvss": {"score": 6.8, "vector": "AV:NETWORK/AC:MEDIUM/Au:NONE/C:PARTIAL/I:PARTIAL/A:PARTIAL/"}, "href": "https://www.tenable.com/plugins/index.php?view=single&id=77314", "cvelist": ["CVE-2014-5267", "CVE-2014-5265", "CVE-2014-5266"], "lastseen": "2017-10-29T13:33:39"}, {"id": "FEDORA_2014-9277.NASL", "type": "nessus", "title": "Fedora 19 : drupal7-7.31-1.fc19 (2014-9277)", "description": "Update to upstream 7.31 release for SA-CORE-2014-004 This is a bugfix release. For complete details refer to:\nhttps://www.drupal.org/drupal-7.30-release-notes\n\nNote that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues.", "published": "2014-08-22T00:00:00", "cvss": {"score": 6.8, "vector": "AV:NETWORK/AC:MEDIUM/Au:NONE/C:PARTIAL/I:PARTIAL/A:PARTIAL/"}, "href": "https://www.tenable.com/plugins/index.php?view=single&id=77313", "cvelist": ["CVE-2014-5267", "CVE-2014-5265", "CVE-2014-5266"], "lastseen": "2017-10-29T13:44:03"}, {"id": "DEBIAN_DSA-2999.NASL", "type": "nessus", "title": "Debian DSA-2999-1 : drupal7 - security update", "description": "A denial of service vulnerability was discovered in Drupal, a fully-featured content management framework. A remote attacker could exploit this flaw to cause CPU and memory exhaustion and the site's database to reach the maximum number of open connections, leading to the site becoming unavailable or unresponsive. More information can be found at https://www.drupal.org/SA-CORE-2014-004.", "published": "2014-08-10T00:00:00", "cvss": {"score": 6.8, "vector": "AV:NETWORK/AC:MEDIUM/Au:NONE/C:PARTIAL/I:PARTIAL/A:PARTIAL/"}, "href": "https://www.tenable.com/plugins/index.php?view=single&id=77100", "cvelist": ["CVE-2014-5267", "CVE-2014-5265", "CVE-2014-5266"], "lastseen": "2017-10-29T13:33:19"}, {"id": "FEDORA_2014-9281.NASL", "type": "nessus", "title": "Fedora 20 : drupal6-6.33-1.fc20 (2014-9281)", "description": "- Update to Drupal 6.33.\n\n - Drupal 6.33 release notes can be found here, https://www.drupal.org/drupal-6.33-release-notes.\n\nNote that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues.", "published": "2014-09-29T00:00:00", "cvss": {"score": 6.8, "vector": "AV:NETWORK/AC:MEDIUM/Au:NONE/C:PARTIAL/I:PARTIAL/A:PARTIAL/"}, "href": "https://www.tenable.com/plugins/index.php?view=single&id=77948", "cvelist": ["CVE-2014-5267", "CVE-2014-5265", "CVE-2014-5266"], "lastseen": "2017-10-29T13:33:17"}, {"id": "DEBIAN_DSA-3001.NASL", "type": "nessus", "title": "Debian DSA-3001-1 : wordpress - security update", "description": "Multiple security issues have been discovered in Wordpress, a web blogging tool, resulting in denial of service or information disclosure. More information can be found in the upstream advisory at https://wordpress.org/news/2014/08/wordpress-3-9-2/.", "published": "2014-08-10T00:00:00", "cvss": {"score": 7.5, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:PARTIAL/I:PARTIAL/A:PARTIAL/"}, "href": "https://www.tenable.com/plugins/index.php?view=single&id=77102", "cvelist": ["CVE-2014-2053", "CVE-2014-5204", "CVE-2014-5205", "CVE-2014-5265", "CVE-2014-5266", "CVE-2014-5240"], "lastseen": "2017-10-29T13:40:01"}, {"id": "DEBIAN_DLA-56.NASL", "type": "nessus", "title": "Debian DLA-56-1 : wordpress security update", "description": "Multiple security issues have been discovered in Wordpress, a web blogging tool, resulting in denial of service or information disclosure.\n\nMore information can be found in the upstream advisory at https://wordpress.org/news/2014/08/wordpress-3-9-2/\n\nNOTE: Tenable Network Security has extracted the preceding description block directly from the DLA security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues.", "published": "2015-03-26T00:00:00", "cvss": {"score": 7.5, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:PARTIAL/I:PARTIAL/A:PARTIAL/"}, "href": "https://www.tenable.com/plugins/index.php?view=single&id=82202", "cvelist": ["CVE-2014-2053", "CVE-2014-5204", "CVE-2014-5205", "CVE-2014-5265", "CVE-2014-5266", "CVE-2014-5240"], "lastseen": "2017-10-29T13:43:01"}, {"id": "FEDORA_2014-9270.NASL", "type": "nessus", "title": "Fedora 19 : wordpress-3.9.2-3.fc19 (2014-9270)", "description": "Upstream announcement:\nhttp://wordpress.org/news/2014/08/wordpress-3-9-2/\n\nNote that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues.", "published": "2014-08-23T00:00:00", "cvss": {"score": 7.5, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:PARTIAL/I:PARTIAL/A:PARTIAL/"}, "href": "https://www.tenable.com/plugins/index.php?view=single&id=77347", "cvelist": ["CVE-2014-5203", "CVE-2014-5204", "CVE-2014-5205", "CVE-2014-5265", "CVE-2014-5266", "CVE-2014-5240"], "lastseen": "2017-10-29T13:33:58"}, {"id": "FEDORA_2014-9264.NASL", "type": "nessus", "title": "Fedora 20 : wordpress-3.9.2-3.fc20 (2014-9264)", "description": "Upstream announcement:\nhttp://wordpress.org/news/2014/08/wordpress-3-9-2/\n\nNote that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues.", "published": "2014-08-22T00:00:00", "cvss": {"score": 7.5, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:PARTIAL/I:PARTIAL/A:PARTIAL/"}, "href": "https://www.tenable.com/plugins/index.php?view=single&id=77312", "cvelist": ["CVE-2014-5203", "CVE-2014-5204", "CVE-2014-5205", "CVE-2014-5265", "CVE-2014-5266", "CVE-2014-5240"], "lastseen": "2017-10-29T13:43:44"}, {"id": "WORDPRESS_3_9_2.NASL", "type": "nessus", "title": "WordPress < 3.7.4 / 3.8.4 / 3.9.2 Multiple Vulnerabilities", "description": "According to its version number, the WordPress application hosted on the remote web server is affected by multiple vulnerabilities :\n\n - An XML injection flaw exists within 'getid3.lib.php' due to the parser accepting XML external entities from untrusted sources. Using specially crafted XML data, a remote attacker could access sensitive information or cause a denial of service. This affects versions 3.6 - 3.9.1, except 3.7.4 and 3.8.4.\n\n - An XML injection flaw exists within 'xmlrpc.php' due to the parser accepting XML internal entities without properly validating them. Using specially crafted XML data, a remote attacker could cause a denial of service.\n This affects versions 1.5 - 3.9.1, except 3.7.4 and 3.8.4.\n\n - An unsafe serialization flaw exists in the script '/src/wp-includes/class-wp-customize-widgets.php' when processing widgets. This could allow a remote attacker to execute arbitrary code. Versions 3.9 and 3.9.1 non-default configurations are affected.\n\n - A flaw exists when building CSRF tokens due to it not separating pieces by delimiter and not comparing nonces in a time-constant manner. This could allow a remote attacker to conduct a brute force attack and potentially disclose the CSRF token. This affects versions 2.0.3 - 3.9.1, except 3.7.4 and 3.8.4.\n\n - A cross-site scripting flaw exists in the function 'get_avatar' within the '/src/wp-includes/pluggable.php' script where input from the avatars is not validated before returning it to the user. Using a specially crafted request, an authenticated attacker could execute arbitrary script code within the browser / server trust relationship. This affects version 3.9.1.\n\nNote that Nessus has not tested for these issues but has instead relied only on the application's self-reported version number.", "published": "2014-08-12T00:00:00", "cvss": {"score": 7.5, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:PARTIAL/I:PARTIAL/A:PARTIAL/"}, "href": "https://www.tenable.com/plugins/index.php?view=single&id=77157", "cvelist": ["CVE-2014-2053", "CVE-2014-5203", "CVE-2014-5204", "CVE-2014-5205", "CVE-2014-5265", "CVE-2014-5266", "CVE-2014-5240"], "lastseen": "2017-10-29T13:45:12"}], "openvas": [{"id": "OPENVAS:1361412562310702999", "type": "openvas", "title": "Debian Security Advisory DSA 2999-1 (drupal7 - security update)", "description": "A denial of service vulnerability was discovered in Drupal, a\nfully-featured content management framework. A remote attacker could\nexploit this flaw to cause CPU and memory exhaustion and the site's\ndatabase to reach the maximum number of open connections, leading to the\nsite becoming unavailable or unresponsive. More information can be found\nat https://www.drupal.org/SA-CORE-2014-004 \n.", "published": "2014-08-09T00:00:00", "cvss": {"score": 6.8, "vector": "AV:NETWORK/AC:MEDIUM/Au:NONE/C:PARTIAL/I:PARTIAL/A:PARTIAL/"}, "href": "http://plugins.openvas.org/nasl.php?oid=1361412562310702999", "cvelist": ["CVE-2014-5267", "CVE-2014-5265", "CVE-2014-5266"], "lastseen": "2018-04-06T11:12:57"}, {"id": "OPENVAS:702999", "type": "openvas", "title": "Debian Security Advisory DSA 2999-1 (drupal7 - security update)", "description": "A denial of service vulnerability was discovered in Drupal, a\nfully-featured content management framework. A remote attacker could\nexploit this flaw to cause CPU and memory exhaustion and the site's\ndatabase to reach the maximum number of open connections, leading to the\nsite becoming unavailable or unresponsive. More information can be found\nat https://www.drupal.org/SA-CORE-2014-004 \n.", "published": "2014-08-09T00:00:00", "cvss": {"score": 6.8, "vector": "AV:NETWORK/AC:MEDIUM/Au:NONE/C:PARTIAL/I:PARTIAL/A:PARTIAL/"}, "href": "http://plugins.openvas.org/nasl.php?oid=702999", "cvelist": ["CVE-2014-5267", "CVE-2014-5265", "CVE-2014-5266"], "lastseen": "2018-02-28T15:25:29"}, {"id": "OPENVAS:1361412562310868109", "type": "openvas", "title": "Fedora Update for drupal7 FEDORA-2014-9277", "description": "Check for the Version of drupal7", "published": "2014-08-22T00:00:00", "cvss": {"score": 6.8, "vector": "AV:NETWORK/AC:MEDIUM/Au:NONE/C:PARTIAL/I:PARTIAL/A:PARTIAL/"}, "href": "http://plugins.openvas.org/nasl.php?oid=1361412562310868109", "cvelist": ["CVE-2014-5267", "CVE-2014-5265", "CVE-2014-5266"], "lastseen": "2018-04-09T11:12:01"}, {"id": "OPENVAS:1361412562310868110", "type": "openvas", "title": "Fedora Update for drupal7 FEDORA-2014-9278", "description": "Check for the Version of drupal7", "published": "2014-08-22T00:00:00", "cvss": {"score": 6.8, "vector": "AV:NETWORK/AC:MEDIUM/Au:NONE/C:PARTIAL/I:PARTIAL/A:PARTIAL/"}, "href": "http://plugins.openvas.org/nasl.php?oid=1361412562310868110", "cvelist": ["CVE-2014-5267", "CVE-2014-5265", "CVE-2014-5266"], "lastseen": "2018-04-09T11:12:01"}, {"id": "OPENVAS:1361412562310868210", "type": "openvas", "title": "Fedora Update for drupal6 FEDORA-2014-9281", "description": "Check for the Version of drupal6", "published": "2014-10-01T00:00:00", "cvss": {"score": 6.8, "vector": "AV:NETWORK/AC:MEDIUM/Au:NONE/C:PARTIAL/I:PARTIAL/A:PARTIAL/"}, "href": "http://plugins.openvas.org/nasl.php?oid=1361412562310868210", "cvelist": ["CVE-2014-5267", "CVE-2014-5265", "CVE-2014-5266"], "lastseen": "2018-04-09T11:13:45"}, {"id": "OPENVAS:703001", "type": "openvas", "title": "Debian Security Advisory DSA 3001-1 (wordpress - security update)", "description": "Multiple security issues have been discovered in Wordpress, a web\nblogging tool, resulting in denial of service or information disclosure.\nMore information can be found in the upstream advisory at\nhttps://wordpress.org/news/2014/08/wordpress-3-9-2/ \n.", "published": "2014-08-09T00:00:00", "cvss": {"score": 7.5, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:PARTIAL/I:PARTIAL/A:PARTIAL/"}, "href": "http://plugins.openvas.org/nasl.php?oid=703001", "cvelist": ["CVE-2014-2053", "CVE-2014-5204", "CVE-2014-5205", "CVE-2014-5265", "CVE-2014-5266", "CVE-2014-5240"], "lastseen": "2018-02-28T15:24:45"}, {"id": "OPENVAS:1361412562310703001", "type": "openvas", "title": "Debian Security Advisory DSA 3001-1 (wordpress - security update)", "description": "Multiple security issues have been discovered in Wordpress, a web\nblogging tool, resulting in denial of service or information disclosure.\nMore information can be found in the upstream advisory at\nhttps://wordpress.org/news/2014/08/wordpress-3-9-2/ \n.", "published": "2014-08-09T00:00:00", "cvss": {"score": 7.5, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:PARTIAL/I:PARTIAL/A:PARTIAL/"}, "href": "http://plugins.openvas.org/nasl.php?oid=1361412562310703001", "cvelist": ["CVE-2014-2053", "CVE-2014-5204", "CVE-2014-5205", "CVE-2014-5265", "CVE-2014-5266", "CVE-2014-5240"], "lastseen": "2018-04-06T11:12:16"}, {"id": "OPENVAS:1361412562310868108", "type": "openvas", "title": "Fedora Update for wordpress FEDORA-2014-9264", "description": "Check for the Version of wordpress", "published": "2014-08-22T00:00:00", "cvss": {"score": 7.5, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:PARTIAL/I:PARTIAL/A:PARTIAL/"}, "href": "http://plugins.openvas.org/nasl.php?oid=1361412562310868108", "cvelist": ["CVE-2014-5203", "CVE-2014-5204", "CVE-2014-5205", "CVE-2014-5265", "CVE-2014-5266", "CVE-2014-0166", "CVE-2014-5240", "CVE-2014-0165"], "lastseen": "2018-04-09T11:12:48"}, {"id": "OPENVAS:1361412562310868115", "type": "openvas", "title": "Fedora Update for wordpress FEDORA-2014-9270", "description": "Check for the Version of wordpress", "published": "2014-08-23T00:00:00", "cvss": {"score": 7.5, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:PARTIAL/I:PARTIAL/A:PARTIAL/"}, "href": "http://plugins.openvas.org/nasl.php?oid=1361412562310868115", "cvelist": ["CVE-2013-2173", "CVE-2014-5203", "CVE-2014-5204", "CVE-2013-4339", "CVE-2013-2201", "CVE-2013-2199", "CVE-2014-5205", "CVE-2013-4340", "CVE-2013-2203", "CVE-2014-5265", "CVE-2014-5266", "CVE-2014-0166", "CVE-2014-5240", "CVE-2013-2202", "CVE-2013-4338", "CVE-2013-2200", "CVE-2014-0165", "CVE-2013-2204"], "lastseen": "2018-04-09T11:12:46"}], "debian": [{"id": "DSA-2999", "type": "debian", "title": "drupal7 -- security update", "description": "A denial of service vulnerability was discovered in Drupal, a fully-featured content management framework. A remote attacker could exploit this flaw to cause CPU and memory exhaustion and the site's database to reach the maximum number of open connections, leading to the site becoming unavailable or unresponsive. More information can be found at <https://www.drupal.org/SA-CORE-2014-004>.\n\nFor the stable distribution (wheezy), this problem has been fixed in version 7.14-2+deb7u6.\n\nFor the testing distribution (jessie), this problem has been fixed in version 7.31-1.\n\nFor the unstable distribution (sid), this problem has been fixed in version 7.31-1.\n\nWe recommend that you upgrade your drupal7 packages.", "published": "2014-08-09T00:00:00", "cvss": {"score": 6.8, "vector": "AV:NETWORK/AC:MEDIUM/Au:NONE/C:PARTIAL/I:PARTIAL/A:PARTIAL/"}, "href": "http://www.debian.org/security/dsa-2999", "cvelist": ["CVE-2014-5267", "CVE-2014-5265", "CVE-2014-5266"], "lastseen": "2016-09-02T18:26:44"}, {"id": "DSA-3001", "type": "debian", "title": "wordpress -- security update", "description": "Multiple security issues have been discovered in Wordpress, a web blogging tool, resulting in denial of service or information disclosure. More information can be found in the upstream advisory at <https://wordpress.org/news/2014/08/wordpress-3-9-2/>.\n\nFor the stable distribution (wheezy), these problems have been fixed in version 3.6.1+dfsg-1~deb7u4.\n\nFor the unstable distribution (sid), these problems have been fixed in version 3.9.2+dfsg-1.\n\nWe recommend that you upgrade your wordpress packages.", "published": "2014-08-09T00:00:00", "cvss": {"score": 7.5, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:PARTIAL/I:PARTIAL/A:PARTIAL/"}, "href": "http://www.debian.org/security/dsa-3001", "cvelist": ["CVE-2014-2053", "CVE-2014-5204", "CVE-2014-5205", "CVE-2014-5265", "CVE-2014-5266", "CVE-2014-5240"], "lastseen": "2016-09-02T18:32:41"}], "drupal": [{"id": "DRUPAL-SA-CORE-2014-004", "type": "drupal", "title": "SA-CORE-2014-004 - Drupal core - Denial of service\n", "description": "Drupal 6 and Drupal 7 include an XML-RPC endpoint which is publicly available (xmlrpc.php). The PHP XML parser used by this XML-RPC endpoint is vulnerable to an XML entity expansion attack and other related XML payload attacks which can cause CPU and memory exhaustion and the site's database to reach the maximum number of open connections. Any of these may lead to the site becoming unavailable or unresponsive (denial of service).\n\nAll Drupal sites are vulnerable to this attack whether XML-RPC is used or not.\n\nIn addition, a similar vulnerability exists in the core OpenID module (for sites that have this module enabled).\n\nThis is a joint release as the XML-RPC vulnerability also affects WordPress (see the [announcement](<https://wordpress.org/news/2014/08/wordpress-3-9-2/>)).\n\n## CVE identifier(s) issued\n\n * _CVE-2014-5265_ [has been issued](<http://openwall.com/lists/oss-security/2014/08/16/4>) for the code changes in xmlrpc.inc which prevent entity declarations and therefore address the \"vulnerable to an XML entity expansion attack ... can cause CPU and memory exhaustion\" concern.\n * _CVE-2014-5266_ [has been issued](<http://openwall.com/lists/oss-security/2014/08/16/4>) for the \"Skip parsing if there is an unreasonably large number of tags\" in both xmlrpc.inc and xrds.inc.\n * _CVE-2014-5267_ [has been issued](<http://openwall.com/lists/oss-security/2014/08/16/4>) for the code change to reject any XRDS document with a /<!DOCTYPE/i match.\n\n## Versions affected\n\n * Drupal core 7.x versions prior to 7.31.\n * Drupal core 6.x versions prior to 6.33.\n\n## Solution\n\nInstall the latest version:\n\n * If you use Drupal 7.x, upgrade to [Drupal core 7.31](<http://drupal.org/drupal-7.31-release-notes>).\n * If you use Drupal 6.x, upgrade to [Drupal core 6.33](<http://drupal.org/drupal-6.33-release-notes>).\n\nIf you are unable to install the latest version of Drupal immediately, you can alternatively remove the xmlrpc.php file from the root of Drupal core (or add a rule to .htaccess to prevent access to xmlrpc.php) and disable the OpenID module. These steps are sufficient to mitigate the vulnerability in Drupal core if your site does not require the use of XML-RPC or OpenID functionality. However, this mitigation will not be effective if you are using a contributed module that exposes Drupal's XML-RPC API at a different URL (for example, the Services module); updating Drupal core is therefore strongly recommended.\n\nAlso see the [Drupal core](<http://drupal.org/project/drupal>) project page.\n\n## Reported by\n\n * [Willis Vandevanter](<https://www.drupal.org/user/1867894>)\n * [Nir Goldshlager](<https://www.drupal.org/user/2891345>)\n\n## Fixed by\n\n * [Andrew Nacin](<http://profiles.wordpress.org/nacin>) of the WordPress Security Team\n * [Michael Adams](<http://profiles.wordpress.org/mdawaffe>) of the WordPress Security Team\n * [Fr\u00e9d\u00e9ric Marand](<https://www.drupal.org/user/27985>)\n * [David Rothstein](<https://www.drupal.org/user/124982>) of the Drupal Security Team\n * [Damien Tournoud](<https://www.drupal.org/user/22211>) of the Drupal Security Team\n * [Greg Knaddison](<https://www.drupal.org/u/greggles>) of the Drupal Security Team\n * [St\u00e9phane Corlosquet](<https://www.drupal.org/user/52142>) of the Drupal Security Team\n * [Dave Reid](<https://www.drupal.org/user/53892>) of the Drupal Security Team\n\n## Coordinated by\n\n * The [Drupal Security Team](<http://drupal.org/security-team>) and the [WordPress](<http://wordpress.org>) Security Team\n", "published": "2014-08-06T00:00:00", "cvss": {"score": 6.8, "vector": "AV:NETWORK/AC:MEDIUM/Au:NONE/C:PARTIAL/I:PARTIAL/A:PARTIAL/"}, "href": "https://www.drupal.org/forum/newsletters/security-advisories-for-drupal-core/2014-08-06/sa-core-2014-004-drupal-core-denial", "cvelist": ["CVE-2014-5267", "CVE-2014-5265", "CVE-2014-5266"], "lastseen": "2017-10-07T03:53:53"}]}}
