Guest

Preview Tool

Cisco Bug: CSCuj54594 - PCA: Numerous XML Vulnerabilities in Prime Collaboration for Assurance

Last Modified

Jan 30, 2020

Products (2)

  • Cisco Prime Collaboration
  • Cisco Prime Collaboration 10.5

Known Affected Releases

10.5

Description (partial)

Symptom:
Cisco Prime Collaboration Manager includes a version of XMLSoft libxml2 that is affected by the
vulnerabilities identified by the following Common Vulnerability and Exposures (CVE) IDs:

CVE-2010-4008: libxml2 before 2.7.8, as used in Google Chrome before 7.0.517.44, Apple Safari 5.0.2 and
earlier, and other products, reads from invalid memory locations during processing of malformed XPath
expressions, which allows context-dependent attackers to cause a denial of service (application crash) via a
crafted XML document. This was classified by the vendor as having a CVSS v2 Base Score of 4.3
(AV:N/AC:M/Au:N/C:P/I:N/A:N/E:U/RL:OF/RC:C)

CVE-2011-0216: Off-by-one error in libxml in Apple Safari before 5.0.6 allows remote attackers to execute
arbitrary code or cause a denial of service (heap-based buffer overflow and application crash) via a crafted
web site. This was classified by the vendor as having a CVSS v2 Base Score of 9.3
(AV:N/AC:M/Au:N/C:C/I:C/A:C/E:U/RL:OF/RC:C)

CVE-2011-1944: Integer overflow in xpath.c in libxml2 2.6.x through 2.6.32 and 2.7.x through 2.7.8, and libxml
1.8.16 and earlier, allows context-dependent attackers to cause a denial of service (crash) and possibly
execute arbitrary code via a crafted XML file that triggers a heap-based buffer overflow when adding a new
namespace node, related to handling of XPath expressions. This was classified by the vendor as having a CVSS
v2 Base Score of 6.8 (AV:N/AC:M/Au:N/C:P/I:P/A:P/E:POC/RL:OF/RC:C)

CVE-2011-2834: Double free vulnerability in libxml2, as used in Google Chrome before 14.0.835.163, allows
remote attackers to cause a denial of service or possibly have unspecified other impact via vectors related to
XPath handling. This was classified by the vendor as having a CVSS v2 Base Score of 4.3
(AV:N/AC:M/Au:N/C:N/I:N/A:P/E:U/RL:OF/RC:UC)

CVE-2011-3102: Off-by-one error in libxml2, as used in Google Chrome before 19.0.1084.46 and other products,
allows remote attackers to cause a denial of service (out-of-bounds write) or possibly have unspecified other
impact via unknown vectors. This was classified by the vendor as having a CVSS v2 Base Score of 6.8
(AV:N/AC:M/Au:N/C:P/I:P/A:P/E:U/RL:OF/RC:C)

CVE-2011-3905: libxml2, as used in Google Chrome before 16.0.912.63, allows remote attackers to cause a denial
of service (out-of-bounds read) via unspecified vectors. This was classified by the vendor as having a CVSS v2
Base Score of 4.3 (AV:N/AC:M/Au:N/C:N/I:P/A:N/E:POC/RL:OF/RC:C)

CVE-2011-3919: Heap-based buffer overflow in libxml2, as used in Google Chrome before 16.0.912.75, allows
remote attackers to cause a denial of service or possibly have unspecified other impact via unknown
vectors. This was classified by the vendor as having a CVSS v2 Base Score of 9.3
(AV:N/AC:M/Au:N/C:C/I:C/A:C/E:U/RL:OF/RC:C)

CVE-2012-0841: libxml2 before 2.8.0 computes hash values without restricting the ability to trigger hash
collisions predictably, which allows context-dependent attackers to cause a denial of service (CPU
consumption) via crafted XML data. This was classified by the vendor as having a CVSS v2 Base Score of 5.0
(AV:N/AC:L/Au:N/C:N/I:N/A:P/E:H/RL:U/RC:C)

CVE-2012-2807: Multiple integer overflows in libxml2, as used in Google Chrome before 20.0.1132.43 and other
products, on 64-bit Linux platforms allow remote attackers to cause a denial of service or possibly have
unspecified other impact via unknown vectors. This was classified by the vendor as having a CVSS v2 Base Score
of 6.8 (AV:N/AC:M/Au:N/C:P/I:P/A:P/E:U/RL:OF/RC:C)

CVE-2012-5134: Heap-based buffer underflow in the xmlParseAttValueComplex function in parser.c in libxml2
2.9.0 and earlier, as used in Google Chrome before 23.0.1271.91 and other products, allows remote attackers to
cause a denial of service or possibly execute arbitrary code via crafted entities in an XML document. This was
classified by the vendor as having a CVSS v2 Base Score of 6.8 (AV:N/AC:M/Au:N/C:P/I:P/A:P/E:U/RL:OF/RC:C)

CVE-2013-0338: libxml2 2.9.0 and earlier allows context-dependent attackers to cause a denial of service (CPU
and memory consumption) via an XML file containing an entity declaration with long replacement text and many
references to this entity, aka ''internal entity expansion'' with linear complexity. This was classified by the
vendor as having a CVSS v2 Base Score of 4.3 (AV:N/AC:M/Au:N/C:N/I:N/A:P/E:U/RL:OF/RC:C)

This bug was opened to address the potential impact on this product.

Conditions:
Device running version of the software prior to this fix.
Bug details contain sensitive information and therefore require a Cisco.com account to be viewed.

Bug Details Include

  • Full Description (including symptoms, conditions and workarounds)
  • Status
  • Severity
  • Known Fixed Releases
  • Related Community Discussions
  • Number of Related Support Cases
Bug information is viewable for customers and partners who have a service contract. Registered users can view up to 200 bugs per month without a service contract.