CVE-2013-2172

Apache Santuario Xml Security For Java < 1.4.8 - Cryptographic Issue

Title source: rule

Description

jcp/xml/dsig/internal/dom/DOMCanonicalizationMethod.java in Apache Santuario XML Security for Java 1.4.x before 1.4.8 and 1.5.x before 1.5.5 allows context-dependent attackers to spoof an XML Signature by using the CanonicalizationMethod parameter to specify an arbitrary weak "canonicalization algorithm to apply to the SignedInfo part of the Signature."

Exploits (2)

nomisec WORKING POC

by dawetmaster · poc

https://github.com/dawetmaster/CVE-2013-2172-santuario-java-vulnerable

View Code ZIP pw:eip

nomisec WORKING POC

by andikahilmy · poc

https://github.com/andikahilmy/CVE-2013-2172-santuario-java-vulnerable

View Code ZIP pw:eip

References (24)

[Vendor Advisory] http://rhn.redhat.com/errata/RHSA-2013-1207.html

[Vendor Advisory] http://rhn.redhat.com/errata/RHSA-2013-1208.html

[Vendor Advisory] http://rhn.redhat.com/errata/RHSA-2013-1209.html

[Vendor Advisory] http://rhn.redhat.com/errata/RHSA-2013-1217.html

[Vendor Advisory] http://rhn.redhat.com/errata/RHSA-2013-1218.html

[Vendor Advisory] http://rhn.redhat.com/errata/RHSA-2013-1219.html

[Vendor Advisory] http://rhn.redhat.com/errata/RHSA-2013-1220.html

[Vendor Advisory] http://rhn.redhat.com/errata/RHSA-2013-1375.html

[Vendor Advisory] http://rhn.redhat.com/errata/RHSA-2013-1437.html

[Vendor Advisory] http://rhn.redhat.com/errata/RHSA-2013-1853.html

[Vendor Advisory] http://rhn.redhat.com/errata/RHSA-2014-0212.html

[Vendor Advisory] http://santuario.apache.org/secadv.data/CVE-2013-2172.txt.asc

[Mailing List] http://seclists.org/fulldisclosure/2014/Dec/23

[Vendor Advisory] http://secunia.com/advisories/54019

[Patch] http://svn.apache.org/viewvc/santuario/xml-security-java/branches/1.5.x-fixes/src/main/java/org/apache/jcp/xml/dsig/internal/dom/DOMCanonicalizationMethod.java?r1=1353876&r2=1493772&pathrev=1493772&diff_format=h

[Vendor Advisory] http://www.oracle.com/technetwork/topics/security/cpujul2014-1972956.html

[Third Party Advisory, VDB Entry] http://www.osvdb.org/94651

[Third Party Advisory, VDB Entry] http://www.securityfocus.com/archive/1/534161/100/0/threaded

[Vendor Advisory] http://www.ubuntu.com/usn/USN-2028-1

[Mailing List] https://lists.apache.org/thread.html/680e6938b6412e26d5446054fd31de2011d33af11786b989127d1cc3%40%3Ccommits.santuario.apache.org%3E

... and 4 more

Scores

EPSS 0.0539

EPSS Percentile 90.2%

Details

CWE

CWE-310

Status published

Products (7)

apache/santuario_xml_security_for_java 1.4.7

apache/santuario_xml_security_for_java 1.5.0

apache/santuario_xml_security_for_java 1.5.1

apache/santuario_xml_security_for_java 1.5.2

apache/santuario_xml_security_for_java 1.5.3

apache/santuario_xml_security_for_java 1.5.4

org.apache.santuario/xmlsec 1.4.0 - 1.4.8Maven

Published Aug 20, 2013

Tracked Since Feb 18, 2026