Public exploit available
Public proof-of-concept or exploit code exists (ExploitDB / Metasploit / Nuclei).

CVE-2016-1838

CWE-125Out-of-bounds ReadCWE-122Heap-based Buffer Overflow17 documents11 sources
Severity
5.5MEDIUM
EPSS
10.7%
top 6.70%
CISA KEV
Not in KEV
Exploit
PoC available
Public exploit / PoC exists
Affected products
14
Apple Iphone OSApple MAC OS XApple Tvos+11 more
Timeline
PublishedMay 20
Latest updateMay 14

Description

The xmlPArserPrintFileContextInternal function in libxml2 before 2.9.4, as used in Apple iOS before 9.3.2, OS X before 10.11.5, tvOS before 9.2.1, and watchOS before 2.2.1, allows remote attackers to cause a denial of service (heap-based buffer over-read) via a crafted XML document.

CVSS vector

CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:HExploitability: 1.8 | Impact: 3.6

Affected Packages10 packages

NVDapple/tvos< 9.2.1
NVDapple/watchos< 2.2.1
NVDapple/mac_os_x< 10.11.5
NVDapple/iphone_os< 9.3.2
Debianlibxml2< 2.9.3+dfsg1-1.1+3

Also affects: Debian Linux 8.0, Ubuntu Linux 12.04, 14.04, 15.10, 16.04, Enterprise Linux 7.2, 7.3, 7.4, 7.6, 7.5

Patches

Patch: git.gnome.orgPatch: kc.mcafee.comPatch: git.gnome.org

🔴Vulnerability Details

4
GHSA
GHSA-ppp9-jxhf-2xj3: The xmlPArserPrintFileContextInternal function in libxml2 before 22022-05-14
Kernel
namei: allow restricted O_CREAT of FIFOs and regular files2018-08-23
OSV
CVE-2016-1838: The xmlPArserPrintFileContextInternal function in libxml2 before 22016-05-20
CVEList
CVE-2016-1838: The xmlPArserPrintFileContextInternal function in libxml2 before 22016-05-20

💥Exploits & PoCs

2
Exploit-DB
Adobe Connect 9.5.7 - Cross-Site Scripting2016-11-09
Exploit-DB
libxml2 - xmlParserPrintFileContextInternal Heap Buffer Overread2016-02-24

📋Vendor Advisories

7
Ubuntu
libxml2 vulnerabilities2016-06-06
Red Hat
libxml2: Heap-based buffer overread in xmlPArserPrintFileContextInternal2016-05-23
Debian
CVE-2016-1838: libxml2 - The xmlPArserPrintFileContextInternal function in libxml2 before 2.9.4, as used ...2016
Apple
CVE-2016-1838: tvOS 9.2.1
Apple
CVE-2016-1838: watchOS 2.2.1

💬Community

3
Bugzilla
CVE-2016-1762 CVE-2016-1833 CVE-2016-1834 CVE-2016-1835 CVE-2016-1836 CVE-2016-1837 CVE-2016-1838 CVE-2016-1839 CVE-2016-1840 CVE-2016-4447 CVE-2016-4448 CVE-2016-4449 libxml2: various flaws [fedora-a2016-06-24
Bugzilla
CVE-2016-1762 CVE-2016-1833 CVE-2016-1834 CVE-2016-1835 CVE-2016-1836 CVE-2016-1837 CVE-2016-1838 CVE-2016-1839 CVE-2016-1840 CVE-2016-4447 CVE-2016-4448 CVE-2016-4449 mingw-libxml2: various flaws [fe2016-06-24
Bugzilla
CVE-2016-1838 libxml2: Heap-based buffer overread in xmlPArserPrintFileContextInternal2016-05-23
CVE-2016-1838 (MEDIUM CVSS 5.5) | The xmlPArserPrintFileContextIntern | cvebase.io