CVE-2015-8710

CRITICAL

Xmlsoft Libxml2 < 2.9.3 - Memory Corruption

Title source: rule

Description

The htmlParseComment function in HTMLparser.c in libxml2 allows attackers to obtain sensitive information, cause a denial of service (out-of-bounds heap memory access and application crash), or possibly have unspecified other impact via an unclosed HTML comment.

Exploits (1)

nomisec WORKING POC 1 stars

by Karm · poc

https://github.com/Karm/CVE-2015-8710

View Code ZIP pw:eip

References (9)

[Third Party Advisory] http://rhn.redhat.com/errata/RHSA-2016-1089.html

[Third Party Advisory] http://www.debian.org/security/2015/dsa-3430

[Mailing List, Patch] http://www.openwall.com/lists/oss-security/2015/04/19/4

[Mailing List] http://www.openwall.com/lists/oss-security/2015/09/13/1

[Mailing List] http://www.openwall.com/lists/oss-security/2015/12/31/7

[Third Party Advisory, VDB Entry] http://www.securityfocus.com/bid/79811

[Issue Tracking] https://bugzilla.gnome.org/show_bug.cgi?id=746048

[Third Party Advisory] https://git.gnome.org/browse/libxml2/commit/?id=e724879d964d774df9b7969fc846605aa1bac54c

[Third Party Advisory] https://hackerone.com/reports/57125#activity-384861

Scores

CVSS v3 9.8

EPSS 0.0471

EPSS Percentile 89.4%

Attack Vector NETWORK

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Details

CWE

CWE-119

Status published

Products (4)

debian/debian_linux 7.0

debian/debian_linux 8.0

debian/debian_linux 9.0

xmlsoft/libxml2 < 2.9.3

Published Apr 11, 2016

Tracked Since Feb 18, 2026