Lucene search
F5F5:K65460334HistorySep 06, 2016 - 12:00 a.m.
K65460334 : Expat XML parser vulnerability CVE-2012-6702
2016-09-0600:00:00
my.f5.com
30
Security Advisory Description
Expat, when used in a parser that has not called XML_SetHashSalt or passed it a seed of 0, makes it easier for context-dependent attackers to defeat cryptographic protection mechanisms via vectors involving use of the srand function. (CVE-2012-6702)
Impact
An attacker may be able to defeat cryptographic protection mechanisms using the srand function.
This vulnerability exists for iControl Simple Object Access Protocol (SOAP) in the rare instance when a client uses the Expat parser provided in the iControl library and, within the same process, calls srand() to generate cryptographic values.
| CPE | Name | Operator | Version |
|---|---|---|---|
| big-ip afm | eq | 11.4.0 | |
| big-ip afm | eq | 11.4.1 | |
| big-ip afm | eq | 11.5.0 | |
| big-ip afm | eq | 11.5.1 | |
| big-ip afm | eq | 11.5.2 | |
| big-ip afm | eq | 11.5.3 | |
| big-ip afm | eq | 11.5.4 | |
| big-ip afm | eq | 11.5.5 | |
| big-ip afm | eq | 11.6.0 | |
| big-ip afm | eq | 11.6.1 |
Related
f5
f5
SOL65460334 - Expat XML parser vulnerability CVE-2012-6702
2016-09-06 00:00:00
nessus
nessus
F5 Networks BIG-IP : Expat XML parser vulnerability (K65460334)
2017-05-11 00:00:00
Ubuntu 14.04 LTS / 16.04 LTS : Expat vulnerabilities (USN-3010-1)
2016-06-21 00:00:00
Debian DSA-3597-1 : expat - security update
2016-06-08 00:00:00
osv
osv
CVE-2012-6702
2016-06-16 18:59:00
expat - security update
2016-06-08 00:00:00
expat - security update
2016-06-07 00:00:00
debiancve
debiancve
CVE-2012-6702
2016-06-16 18:59:00
veracode
veracode
Weak Cryptographic Protection
2016-06-08 07:23:46
cve
cve
CVE-2012-6702
2016-06-16 18:59:00
cvelist
cvelist
CVE-2012-6702
2016-06-16 18:00:00
nvd
nvd
CVE-2012-6702
2016-06-16 18:59:00
prion
prion
Design/Logic Flaw
2016-06-16 18:59:00
alpinelinux
alpinelinux
CVE-2012-6702
2016-06-16 18:59:00
openvas
openvas
Ubuntu: Security Advisory (USN-3010-1)
2016-06-21 00:00:00
SUSE: Security Advisory (SUSE-SU-2017:0424-1)
2021-04-19 00:00:00
Debian Security Advisory DSA 3597-1 (expat - security update)
2016-06-07 00:00:00
ibm
ibm
cloudfoundry
cloudfoundry
USN-3010-1 Expat vulnerabilities | Cloud Foundry
2016-07-13 00:00:00
ubuntucve
ubuntucve
CVE-2012-6702
2012-12-31 00:00:00
CVE-2016-5300
2016-06-06 00:00:00
ubuntu
ubuntu
Expat vulnerabilities
2016-06-20 00:00:00
XML-RPC for C and C++ vulnerabilities
2016-06-20 00:00:00
freebsd
freebsd
expat -- multiple vulnerabilities
2016-03-18 00:00:00
debian
debian
[SECURITY] [DSA 3597-1] expat security update
2016-06-07 16:44:57
[SECURITY] [DSA 3597-1] expat security update
2016-06-07 16:44:57
[SECURITY] [DLA 508-1] expat security update
2016-06-08 09:29:13
mageia
mageia
Updated expat packages fix security vulnerabilities
2016-06-17 08:58:14
archlinux
archlinux
expat: multiple issues
2016-06-13 00:00:00
lib32-expat: multiple issues
2016-06-13 00:00:00
fedora
fedora
[SECURITY] Fedora 22 Update: expat-2.1.1-2.fc22
2016-07-12 02:27:38
[SECURITY] Fedora 24 Update: expat-2.1.1-2.fc24
2016-06-21 19:27:49
[SECURITY] Fedora 23 Update: expat-2.1.1-2.fc23
2016-06-19 07:27:54
slackware
slackware
[slackware-security] expat
2016-12-24 19:24:21
gentoo
gentoo
Expat: Multiple vulnerabilities
2017-01-11 00:00:00
apple
apple
About the security content of iTunes 12.6
2017-03-21 00:00:00
About the security content of iTunes 12.6 - Apple Support
2017-03-22 07:40:40
About the security content of iTunes 12.6 for Windows
2017-03-21 00:00:00
suse
suse
Security update for SLES 12-SP2 Docker image (important)
2017-10-11 03:08:09
Security update for SLES 12-SP1 Docker image (important)
2017-10-11 03:07:32
Security update for SLES 12 Docker image (important)
2017-10-11 03:06:53
androidsecurity
androidsecurity
Android Security BulletinβNovember 2016
2016-11-07 00:00:00