CVE-2012-3363

CRITICAL

Zend Framework < 1.11.12 - XXE

Title source: rule

Description

Zend_XmlRpc in Zend Framework 1.x before 1.11.12 and 1.12.x before 1.12.0 does not properly handle SimpleXMLElement classes, which allows remote attackers to read arbitrary files or create TCP connections via an external entity reference in a DOCTYPE element in an XML-RPC request, aka an XML external entity (XXE) injection attack.

Exploits (1)

exploitdb WRITEUP

by SEC Consult · textwebappsphp

https://www.exploit-db.com/exploits/19408

View Code ZIP pw:eip

References (12)

[Vendor Advisory] http://framework.zend.com/security/advisory/ZF2012-01

[Patch] http://git.moodle.org/gw?p=moodle.git&a=search&h=HEAD&st=commit&s=MDL-34284

[Mailing List] http://lists.fedoraproject.org/pipermail/package-announce/2013-April/101310.html

[Mailing List] http://lists.fedoraproject.org/pipermail/package-announce/2013-April/101358.html

[Mailing List] http://openwall.com/lists/oss-security/2013/03/25/2

[Mailing List] http://www.debian.org/security/2012/dsa-2505

[Mailing List] http://www.openwall.com/lists/oss-security/2012/06/26/2

[Mailing List] http://www.openwall.com/lists/oss-security/2012/06/26/4

[Mailing List] http://www.openwall.com/lists/oss-security/2012/06/27/2

[Broken Link, Third Party Advisory, VDB Entry] http://www.securitytracker.com/id?1027208

[Third Party Advisory] https://moodle.org/mod/forum/discuss.php?d=225345

[Broken Link] https://www.sec-consult.com/files/20120626-0_zend_framework_xxe_injection.txt

Scores

CVSS v3 9.1

EPSS 0.5512

EPSS Percentile 98.1%

Attack Vector NETWORK

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N

Details

CWE

CWE-611

Status published

Products (6)

debian/debian_linux 6.0

fedoraproject/fedora 17

fedoraproject/fedora 18

zend/zend_framework 1.12.0 rc1 (4 CPE variants)

zend/zend_framework 1.0.0 - 1.11.12

zendframework/zendframework1 1.0.0 - 1.11.12Packagist

Published Feb 13, 2013

Tracked Since Feb 18, 2026