CVE-2012-6702

MEDIUM

libexpat < 2.2.0 - Hash Collision via srand Function

Title source: llm

Exploitation Summary

EIP tracks 1 public exploit for CVE-2012-6702. PoCs published by codecat007.

AI-analyzed exploit summary This PoC demonstrates a vulnerability in the Expat XML parser (CVE-2012-6702) by repeatedly creating and freeing parsers to exploit a flaw in random value generation, leading to potential memory corruption or DoS conditions.

Description

Expat, when used in a parser that has not called XML_SetHashSalt or passed it a seed of 0, makes it easier for context-dependent attackers to defeat cryptographic protection mechanisms via vectors involving use of the srand function.

Exploits (1)

github WORKING POC 8 stars

by codecat007 · cpoc

https://github.com/codecat007/cvehub/tree/main/android/securityPatch/CVE-2012-6702

View Code ZIP pw:eip

This PoC demonstrates a vulnerability in the Expat XML parser (CVE-2012-6702) by repeatedly creating and freeing parsers to exploit a flaw in random value generation, leading to potential memory corruption or DoS conditions.

Classification

Working Poc 90%

Attack Type

Dos

Complexity

Moderate

Reliability

Reliable

Target: Expat XML parser (versions prior to fix)

No auth needed

Prerequisites: Access to a system using the vulnerable Expat library

MITRE ATT&CK