CVE-2016-0718

high-risk

Published 2016-05-26

Expat allows context-dependent attackers to cause a denial of service (crash) or possibly execute arbitrary code via a malformed input document, which triggers a buffer overflow.

Do I need to act?

2.8% chance of exploitation in next 30 days

EPSS score — moderate exploit probability

Not on CISA KEV list

No confirmed active exploitation reported to CISA

Fix available

Upgrade to: fbc46fa2be307280648147543c053d05910f7a85, ca079a3ea30098aff3197c559a0e32d42dda6d84, 17bf6b4671ec02d80ad29b278639d5307baddeb5, 7dc38385ce78c5c04637531c4325a83b57fbeb3a, 3f568389763c205f8779ad75f2cf44ab9782608e, 5fd33b5926eb8c9352bf5718369b4a8d72c4bb44

CVSS 9.8/10 Critical

NETWORK / LOW complexity

Affected Products (20)

Firefox

Mac Os X

Linux Enterprise Debuginfo

Linux Enterprise Software Development Kit

Linux Enterprise Desktop

Linux Enterprise Server

Ubuntu Linux

Libexpat

Debian Linux

Opensuse

Policy Auditor

Studio Onsite

Linux Enterprise Server

Leap

Linux Enterprise Desktop

Linux Enterprise Server

Linux Enterprise Software Development Kit

Affected Vendors

Apple Canonical Libexpat Project Mcafee Opensuse Debian Python Mozilla Suse

References (60)

Mailing List http://lists.apple.com/archives/security-announce/2016/Jul/msg00000.html

Third Party Advisory http://lists.opensuse.org/opensuse-security-announce/2016-05/msg00064.html

Third Party Advisory http://lists.opensuse.org/opensuse-security-announce/2016-06/msg00006.html

Third Party Advisory http://lists.opensuse.org/opensuse-security-announce/2016-06/msg00007.html

Third Party Advisory http://lists.opensuse.org/opensuse-security-announce/2016-06/msg00010.html

Third Party Advisory http://lists.opensuse.org/opensuse-security-announce/2016-08/msg00004.html

Third Party Advisory http://lists.opensuse.org/opensuse-security-announce/2016-08/msg00029.html

Third Party Advisory http://packetstormsecurity.com/files/141350/ESET-Endpoint-Antivirus-6-Remote-Cod...

Third Party Advisory http://rhn.redhat.com/errata/RHSA-2016-2824.html

Mailing List http://seclists.org/fulldisclosure/2017/Feb/68

Third Party Advisory http://support.eset.com/ca6333/

Third Party Advisory http://www.debian.org/security/2016/dsa-3582

Third Party Advisory http://www.mozilla.org/security/announce/2016/mfsa2016-68.html

Mailing List http://www.openwall.com/lists/oss-security/2016/05/17/12

Patch http://www.oracle.com/technetwork/security-advisory/cpujul2018-4258247.html

Third Party Advisory http://www.oracle.com/technetwork/topics/security/bulletinjul2016-3090568.html

Third Party Advisory http://www.securityfocus.com/bid/90729

Third Party Advisory http://www.securitytracker.com/id/1036348

Third Party Advisory http://www.securitytracker.com/id/1036415

Third Party Advisory http://www.securitytracker.com/id/1037705

and 40 more references

/ 100

high-risk

Severity 32/34 · Critical

Exploitability 6/34 · Minimal

Exposure 20/34 · Moderate