Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact
6.5
CVSSv3

CVE-2018-0486

Published: 13/01/2018 Updated: 15/02/2018
CVSS v2 Base Score: 6.4 | Impact Score: 4.9 | Exploitability Score: 10
CVSS v3 Base Score: 6.5 | Impact Score: 2.5 | Exploitability Score: 3.9
VMScore: 570
Vector: AV:N/AC:L/Au:N/C:P/I:P/A:N
Subscribe to Xmltooling-c

Vulnerability Summary

Shibboleth XMLTooling-C prior to 1.6.3, as used in Shibboleth Service Provider prior to 2.6.0 on Windows and other products, mishandles digital signatures of user attribute data, which allows remote malicious users to obtain sensitive information or conduct impersonation attacks via a crafted DTD.

Vulnerable Product Search on Vulmon Subscribe to Product

shibboleth xmltooling-c

debian debian linux 8.0

debian debian linux 7.0

debian debian linux 9.0

Vendor Advisories

Debian Security Advisories: DSA-4085-1 xmltooling -- security update
Philip Huppert discovered the Shibboleth service provider is vulnerable to impersonation attacks and information disclosure due to mishandling of DTDs in the XMLTooling XML parsing library For additional details please refer to the upstream advisory at shibbolethnet/community/advisories/secadv_20180112txt For the oldstable distribution ( ...
Red Hat: CVE-2018-0486
Shibboleth XMLTooling-C before 163, as used in Shibboleth Service Provider before 260 on Windows and other products, mishandles digital signatures of user attribute data, which allows remote attackers to obtain sensitive information or conduct impersonation attacks via a crafted DTD ...

Exploits

Exploit DB: Shibboleth 2 XML Injection
RedTeam Pentesting discovered that the shibd service of Shibboleth 2 does not extract SAML attribute values in a robust manner By inserting XML entities into a SAML response, attackers may truncate attribute values without breaking the document's signature This might lead to a complete bypass of authorisation mechanisms Versions prior to 261 a ...

References

CWE-347https://shibboleth.net/community/advisories/secadv_20180112.txthttps://lists.debian.org/debian-security-announce/2018/msg00007.htmlhttps://www.debian.org/security/2018/dsa-4085http://www.securitytracker.com/id/1040177https://lists.debian.org/debian-lts-announce/2018/01/msg00016.htmlhttps://nvd.nist.govhttps://www.debian.org/security/./dsa-4085
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
blind SQL injectionfirmwareCVE-2006-4304CVE-2024-32878CVE-2024-31502XSSCVE-2024-3059CVE-2024-33692CVE-2024-3400
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook