XML External Entity (XXE)

2019-01-1508:57:18

Veracode Vulnerability Database

sca.analysiscenter.veracode.com

4.9 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

SINGLE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:M/Au:S/C:P/I:P/A:N

JSON

postgresql is vulnerable to XML External Entity (XXE) attacks. The vulnerability exists as the libxslt support in contrib/xml2 in PostgreSQL 8.3 before 8.3.20, 8.4 before 8.4.13, 9.0 before 9.0.9, and 9.1 before 9.1.5 does not properly restrict access to files and URLs, which allows remote authenticated users to modify data, obtain sensitive information, or trigger outbound traffic to arbitrary external hosts by leveraging (1) stylesheet commands that are permitted by the libxslt security options or (2) an xslt_process feature, related to an XML External Entity (aka XXE) issue.

CPENameOperatorVersion
postgresql84eq8.4.2__5.el5
postgresql84eq8.4.11__1.el5_8
postgresql84eq8.4.5__1.el5_5.1
postgresql84eq8.4.4__1.el5_5.1
postgresql84eq8.4.12__1.el5_8
postgresql84eq8.4.7__1.el5_6.1
postgresql84eq8.4.9__1.el5_7.1
postgresqleq8.1.23__1.el5_7.3
postgresqleq8.1.18__2.el5_4.1
postgresqleq8.1.22__1.el5_5.1

Name	Operator	Version
postgresql84	eq	8.4.2__5.el5
postgresql84	eq	8.4.11__1.el5_8
postgresql84	eq	8.4.5__1.el5_5.1
postgresql84	eq	8.4.4__1.el5_5.1
postgresql84	eq	8.4.12__1.el5_8
postgresql84	eq	8.4.7__1.el5_6.1
postgresql84	eq	8.4.9__1.el5_7.1
postgresql	eq	8.1.23__1.el5_7.3
postgresql	eq	8.1.18__2.el5_4.1
postgresql	eq	8.1.22__1.el5_5.1