CVE-2014-3004
published 2014-06-11CVE-2014-3004: The default configuration for the Xerces SAX Parser in Castor before 1.3.3 allows context-dependent attackers to conduct XML External Entity (XXE) attacks via…
PriorityP433medium4.3CVSS 2.0
AVNACMAuNCPINAN
EXPLOIT
EPSS
7.79%
93.9th percentile
The default configuration for the Xerces SAX Parser in Castor before 1.3.3 allows context-dependent attackers to conduct XML External Entity (XXE) attacks via a crafted XML document.
Affected
5 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| castor_project | castor | <= 1.3.2 | — |
| castor_project | castor | — | — |
| castor_project | castor | — | — |
| opensuse | opensuse | — | — |
| opensuse_project | opensuse | — | — |
CVSS provenance
nvdv2.04.3MEDIUMAV:N/AC:M/Au:N/C:P/I:N/A:N
osv4.3MEDIUM
vendor_oracle5.3MEDIUM
vendor_redhat4.3MEDIUM
CVEs like this are exactly what “Exploited This Week” covers.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
Oracle
Oracle Oracle Utilities Applications Risk Matrix: Common (Castor) — CVE-2014-3004
vendor_oracle·2020-01-15·CVSS 5.3
CVE-2014-3004 [MEDIUM] Oracle Oracle Utilities Applications Risk Matrix: Common (Castor) — CVE-2014-3004
Oracle Oracle Utilities Applications Risk Matrix: Common (Castor) vulnerability
CVE: CVE-2014-3004
CVSS: 5.3
Protocol: HTTP
Remote exploit: Yes
Affected versions: Network
Advisory: cpujan2020 (JAN 2020)
Red Hat
castor: XML External Entity (XXE) attacks via a crafted XML document
vendor_redhat·2014-05-27·CVSS 4.3
CVE-2014-3004 [MEDIUM] CWE-611 castor: XML External Entity (XXE) attacks via a crafted XML document
castor: XML External Entity (XXE) attacks via a crafted XML document
The default configuration for the Xerces SAX Parser in Castor before 1.3.3 allows context-dependent attackers to conduct XML External Entity (XXE) attacks via a crafted XML document.
Statement: This issue affects the version of castor as shipped with Red Hat Enterprise Linux 5 and 6. The Red Hat Security Response Team has rated this issue as having Moderate security impact. A future update may address this issue. For additional information, refer to the Issue Severity Classification: https://access.redhat.com/security/updates/classification/.
Red Hat JBoss SOA Platform 4 is now in Phase 3, Extended Life Support, of its life cycle. This issue has been rated as having Moderate security impact and is not currently planned
OSV
Improper Restriction of XML External Entity Reference in Castor
osv·2022-05-13
CVE-2014-3004 [MEDIUM] Improper Restriction of XML External Entity Reference in Castor
Improper Restriction of XML External Entity Reference in Castor
The default configuration for the Xerces SAX Parser in Castor before 1.3.3 allows context-dependent attackers to conduct XML External Entity (XXE) attacks via a crafted XML document.
GHSA
Improper Restriction of XML External Entity Reference in Castor
ghsa·2022-05-13
CVE-2014-3004 [MEDIUM] CWE-611 Improper Restriction of XML External Entity Reference in Castor
Improper Restriction of XML External Entity Reference in Castor
The default configuration for the Xerces SAX Parser in Castor before 1.3.3 allows context-dependent attackers to conduct XML External Entity (XXE) attacks via a crafted XML document.
OSV
CVE-2014-3004: The default configuration for the Xerces SAX Parser in Castor before 1
osv·2014-06-11·CVSS 4.3
CVE-2014-3004 [MEDIUM] CVE-2014-3004: The default configuration for the Xerces SAX Parser in Castor before 1
The default configuration for the Xerces SAX Parser in Castor before 1.3.3 allows context-dependent attackers to conduct XML External Entity (XXE) attacks via a crafted XML document.
No detection rules found.
Bugzilla
CVE-2014-3004 castor: XML External Entity (XXE) attacks via a crafted XML document
bugzilla·2014-06-12·CVSS 4.3
CVE-2014-3004 [MEDIUM] CVE-2014-3004 castor: XML External Entity (XXE) attacks via a crafted XML document
CVE-2014-3004 castor: XML External Entity (XXE) attacks via a crafted XML document
It was discovered [1] that the Castor library's unmarshalling class is susceptible to XML External Entity (XXE) attacks.
If the XML that is being passed to the unmarshalling function is controllable by an
end user, there is the potential that they could retrieve local resources,
download malicious code from other servers, and/or open arbitrary TCP
connections.
[1]: http://seclists.org/fulldisclosure/2014/May/142
Discussion:
Created castor tracking bugs for this issue:
Affects: fedora-all [bug 1108691]
---
Statement:
This issue affects the version of castor as shipped with Red Hat Enterprise Linux 5 and 6. The Red Hat Security Response Team has rated this issue as having Moderate security impact. A fu
Bugzilla
CVE-2014-3004 castor: XML External Entity (XXE) attacks via a crafted XML document [fedora-all]
bugzilla·2014-06-12·CVSS 4.3
CVE-2014-3004 [MEDIUM] CVE-2014-3004 castor: XML External Entity (XXE) attacks via a crafted XML document [fedora-all]
CVE-2014-3004 castor: XML External Entity (XXE) attacks via a crafted XML document [fedora-all]
This is an automatically created tracking bug! It was created to ensure
that one or more security vulnerabilities are fixed in affected versions
of Fedora.
For comments that are specific to the vulnerability please use bugs filed
against the "Security Response" product referenced in the "Blocks" field.
For more information see:
http://fedoraproject.org/wiki/Security/TrackingBugs
When creating a Bodhi update request, use the bodhi submission link noted
in the next comment(s). This will include the bug IDs of this tracking
bug as well as the relevant top-level CVE bugs.
Please also mention the CVE IDs being fixed in the RPM changelog and the
Bodhi notes field when available.
NOTE: this issue
http://lists.opensuse.org/opensuse-updates/2014-06/msg00043.htmlhttp://packetstormsecurity.com/files/126854/Castor-Library-XXE-Disclosure.htmlhttp://seclists.org/fulldisclosure/2014/May/142http://secunia.com/advisories/59427http://www.securityfocus.com/bid/67676https://quickview.cloudapps.cisco.com/quickview/bug/CSCvm56811https://www.oracle.com/security-alerts/cpujan2020.htmlhttps://www.oracle.com/security-alerts/cpuoct2021.htmlhttp://lists.opensuse.org/opensuse-updates/2014-06/msg00043.htmlhttp://packetstormsecurity.com/files/126854/Castor-Library-XXE-Disclosure.htmlhttp://seclists.org/fulldisclosure/2014/May/142http://secunia.com/advisories/59427http://www.securityfocus.com/bid/67676https://quickview.cloudapps.cisco.com/quickview/bug/CSCvm56811https://www.oracle.com/security-alerts/cpujan2020.htmlhttps://www.oracle.com/security-alerts/cpuoct2021.html
2014-06-11
Published