CVE-2016-4472

The overflow protection in Expat is removed by compilers with certain optimization settings, which allows remote attackers to cause a denial of service (crash) or possibly execute arbitrary code via crafted XML data. NOTE: this vulnerability exists because of an incomplete fix for CVE-2015-1283 and CVE-2015-2716.

Published: Jun 30, 2016
Updated: Nov 8, 2023
CVE: CVE-2016-4472
Severity: High
Exploit:

CVSS v3:

Severity: High
Score: 8.1
AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H

CVSS v2:

Severity: Medium
Score: 6.8
AV:N/AC:M/Au:N/C:P/I:P/A:P

CWEs:

CWE-119

Affected Software
References

Software	From	Fixed in
libexpat_project / libexpat	-	2.1.1.x
canonical / ubuntu_linux	12.04	12.04.x
mcafee / policy_auditor	-	6.5.1
python / python	3.6.0	3.6.2
python / python	3.5.0	3.5.4
python / python	3.4.0	3.4.7
python / python	3.3.0	3.3.7
python / python	2.7.0	2.7.15

http://www.securityfocus.com/bid/91528
http://www.ubuntu.com/usn/USN-3013-1
https://bugzilla.redhat.com/show_bug.cgi?id=1344251
https://kc.mcafee.com/corporate/index?page=content&id=SB10365
https://security.gentoo.org/glsa/201701-21
https://sourceforge.net/p/expat/code_git/ci/f0bec73b018caa07d3e75ec8dd967f3785d71bde
https://www.tenable.com/security/tns-2016-20

Vulnerability Database

289,599

CVE-2016-4472