Vulnerabilities > CVE-2010-2076 - Inclusion of Functionality from Untrusted Control Sphere vulnerability in Apache CXF

CVSS 9.8 - CRITICAL

Attack vector

NETWORK

Attack complexity

LOW

Privileges required

NONE

Confidentiality impact

HIGH

Integrity impact

HIGH

Availability impact

HIGH

network

low complexity

apache

CWE-829

critical

NVD

Published: 2010-08-19

Updated: 2024-02-15

Summary

Apache CXF 2.0.x before 2.0.13, 2.1.x before 2.1.10, and 2.2.x before 2.2.9, as used in Apache ServiceMix, Apache Camel, Apache Chemistry, Apache jUDDI, Apache Geronimo, and other products, does not properly reject DTDs in SOAP messages, which allows remote attackers to read arbitrary files, send HTTP requests to intranet servers, or cause a denial of service (CPU and memory consumption) via a crafted DTD, as demonstrated by an entity declaration in a request to samples/wsdl_first_pure_xml, a similar issue to CVE-2010-1632.

Vulnerable Configurations

Part	Description	Count
Application	Apache Apache CXF 2.0.6 Apache CXF 2.0.7 Apache CXF 2.0.8 Apache CXF 2.0.9 Apache CXF 2.0.10 Apache CXF 2.0.11 Apache CXF 2.0.12 Apache CXF 2.1.0 Apache CXF 2.1.1 Apache CXF 2.1.2 Apache CXF 2.1.3 Apache CXF 2.1.4 Apache CXF 2.1.5 Apache CXF 2.1.6 Apache CXF 2.1.7 Apache CXF 2.1.8 Apache CXF 2.1.9 Apache CXF 2.2.0 Apache CXF 2.2.1 Apache CXF 2.2.2 Apache CXF 2.2.3 Apache CXF 2.2.4 Apache CXF 2.2.5 Apache CXF 2.2.6 Apache CXF 2.2.7 Apache CXF 2.2.8	26

Common Weakness Enumeration (CWE)

CWE-829 - Inclusion of Functionality from Untrusted Control Sphere

Summary

Vulnerable Configurations

Common Weakness Enumeration (CWE)

References