Vulnerabilities > CVE-2018-13417 - XXE vulnerability in Vuze Bittorrent Client 5.7.6.0
Attack vector
NETWORK Attack complexity
LOW Privileges required
NONE Confidentiality impact
PARTIAL Integrity impact
PARTIAL Availability impact
PARTIAL Summary
In Vuze Bittorrent Client 5.7.6.0, the XML parsing engine for SSDP/UPnP functionality is vulnerable to an XML External Entity Processing (XXE) attack. Remote, unauthenticated attackers can use this vulnerability to: (1) Access arbitrary files from the filesystem with the same permission as the user account running Vuze, (2) Initiate SMB connections to capture a NetNTLM challenge/response and crack to cleartext password, or (3) Initiate SMB connections to relay a NetNTLM challenge/response and achieve Remote Command Execution in Windows domains.
Vulnerable Configurations
| Part | Description | Count |
|---|---|---|
| Application | 1 |
Common Weakness Enumeration (CWE)
Exploit-Db
| description | Vuze Bittorrent Client 5.7.6.0 - SSDP Processing XML External Entity Injection. CVE-2018-13417. Webapps exploit for XML platform. Tags: XML External Entity (... |
| file | exploits/xml/webapps/45145.txt |
| id | EDB-ID:45145 |
| last seen | 2018-08-03 |
| modified | 2018-08-03 |
| platform | xml |
| port | |
| published | 2018-08-03 |
| reporter | Exploit-DB |
| source | https://www.exploit-db.com/download/45145/ |
| title | Vuze Bittorrent Client 5.7.6.0 - SSDP Processing XML External Entity Injection |
| type | webapps |
Packetstorm
| data source | https://packetstormsecurity.com/files/download/148809/vuzebtc5760-xxe.txt |
| id | PACKETSTORM:148809 |
| last seen | 2018-08-08 |
| published | 2018-08-03 |
| reporter | Chris Moberly |
| source | https://packetstormsecurity.com/files/148809/Vuze-Bittorrent-Client-5.7.6.0-SSDP-Processing-XML-Injection.html |
| title | Vuze Bittorrent Client 5.7.6.0 SSDP Processing XML Injection |