Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact
6.4
CVSSv2

CVE-2015-0250

Published: 24/03/2015 Updated: 04/11/2017
CVSS v2 Base Score: 6.4 | Impact Score: 4.9 | Exploitability Score: 10
VMScore: 571
Vector: AV:N/AC:L/Au:N/C:P/I:N/A:P
Subscribe to Ubuntu Linux

Vulnerability Summary

XML external entity (XXE) vulnerability in the SVG to (1) PNG and (2) JPG conversion classes in Apache Batik 1.x prior to 1.8 allows remote malicious users to read arbitrary files or cause a denial of service via a crafted SVG file.

Vulnerability Trend

Vulnerable Product Search on Vulmon Subscribe to Product

canonical ubuntu linux 14.04

canonical ubuntu linux 12.04

canonical ubuntu linux 14.10

apache batik

redhat jboss enterprise brms platform

Vendor Advisories

Debian CVElist Bug Report Logs: batik: CVE-2015-0250
Debian Bug report logs - #780897 batik: CVE-2015-0250 Package: src:batik; Maintainer for src:batik is Debian Java Maintainers <pkg-java-maintainers@listsaliothdebianorg>; Reported by: Salvatore Bonaccorso <carnil@debianorg> Date: Sat, 21 Mar 2015 07:09:02 UTC Owned by: tmancill@debianorg Severity: important Tags: ...
Ubuntu Security Notice: batik vulnerability
Batik could be made to consume resources or expose sensitive information ...
Debian Security Advisories: DSA-3205-1 batik -- security update
Nicolas Gregoire and Kevin Schaller discovered that Batik, a toolkit for processing SVG images, would load XML external entities by default If a user or automated system were tricked into opening a specially crafted SVG file, an attacker could possibly obtain access to arbitrary files or cause resource consumption For the stable distribution (whe ...

Github Repositories

https://github.com/yuriisanin/svg2raster-cheatsheet

A cheatsheet for exploiting server-side SVG rasterization.

SVG rasterization cheatsheet SVG rasterization cheatsheet XLink:Href references Documents Images Fonts ICC profiles Stylesheets XML stylesheet CSS @import CSS infinite loading via @import rule Infinite loading using /dev/random Tags styles using fill attribute Scripting Embedded scripts Script tag Events External scripts Code execution XML External Entities Li

https://github.com/DingyShark/BurpSuiteCertifiedPractitioner

Ultimate Burp Suite Exam and PortSwigger Labs Guide.

BurpSuiteCertifiedPractitioner Ultimate Burp Suite Exam and PortSwigger Labs Guide In other words BSCP without mOrasmus Strategy The exam consists of two web applications, two hours each Each application has three stages: Get access to any user; Promote yourself to an administrator or steal his data; Using the admin panel read the contents of /home/carlos/secret on the file

References

NVD-CWE-Otherhttp://seclists.org/fulldisclosure/2015/Mar/142http://xmlgraphics.apache.org/security.htmlhttp://www.ubuntu.com/usn/USN-2548-1http://packetstormsecurity.com/files/130964/Apache-Batik-XXE-Injection.htmlhttp://www.mandriva.com/security/advisories?name=MDVSA-2015:203http://advisories.mageia.org/MGASA-2015-0138.htmlhttp://rhn.redhat.com/errata/RHSA-2016-0041.htmlhttp://rhn.redhat.com/errata/RHSA-2016-0042.htmlhttp://www-01.ibm.com/support/docview.wss?uid=swg21963275http://www.securitytracker.com/id/1032781http://www.debian.org/security/2015/dsa-3205https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=780897https://usn.ubuntu.com/2548-1/https://nvd.nist.gov
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
deserializationCVE-2024-4040cross-site scriptingCVE-2023-25790CVE-2024-2961XML external entityCVE-2024-26926CVE-2024-32806CVE-2024-32711
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook