NVD Vulnerability Detail

CVE-2014-8090

Summary	The REXML parser in Ruby 1.9.x before 1.9.3 patchlevel 551, 2.0.x before 2.0.0 patchlevel 598, and 2.1.x before 2.1.5 allows remote attackers to cause a denial of service (CPU and memory consumption) a crafted XML document containing an empty string in an entity that is used in a large number of nested entity references, aka an XML Entity Expansion (XEE) attack. NOTE: this vulnerability exists because of an incomplete fix for CVE-2013-1821 and CVE-2014-8080.
Publication Date	Nov. 22, 2014, 12:59 a.m.
Registration Date	Jan. 26, 2021, 3:19 p.m.
Last Update	Nov. 21, 2024, 11:18 a.m.

CVSS2.0 : MEDIUM
Score	5.0
Vector	AV:N/AC:L/Au:N/C:N/I:N/A:P
攻撃元区分(AV)	ネットワーク
攻撃条件の複雑さ(AC)	低
攻撃前の認証要否(Au)	不要
機密性への影響(C)	なし
完全性への影響(I)	なし
可用性への影響(A)	低
Get all privileges.	いいえ
Get user privileges	いいえ
Get other privileges	いいえ
User operation required	いいえ

Affected software configurations

Configuration1	or higher	or less	more than	less than
cpe:2.3:a:ruby-lang:ruby:1.9.3:p426::::::
cpe:2.3:a:ruby-lang:ruby:2.0.0:::::::*
cpe:2.3:a:ruby-lang:ruby:1.9.3:p448::::::
cpe:2.3:a:ruby-lang:ruby:2.0.0:p481::::::
cpe:2.3:a:ruby-lang:ruby:2.1.4:::::::*
cpe:2.3:a:ruby-lang:ruby:2.1.3:::::::*
cpe:2.3:a:ruby-lang:ruby:1.9.3:p286::::::
cpe:2.3:a:ruby-lang:ruby:1.9.3:p385::::::
cpe:2.3:a:ruby-lang:ruby:1.9.3:p383::::::
cpe:2.3:a:ruby-lang:ruby:2.0.0:p195::::::
cpe:2.3:a:ruby-lang:ruby:1.9.3:p429::::::
cpe:2.3:a:ruby-lang:ruby:2.1.1:::::::*
cpe:2.3:a:ruby-lang:ruby:2.0.0:p594::::::
cpe:2.3:a:ruby-lang:ruby:2.0.0:p247::::::
cpe:2.3:a:ruby-lang:ruby:1.9.3:p547::::::
cpe:2.3:a:ruby-lang:ruby:2.0.0:p0::::::
cpe:2.3:a:ruby-lang:ruby:1.9.3:p125::::::
cpe:2.3:a:ruby-lang:ruby:1.9.3:p194::::::
cpe:2.3:a:ruby-lang:ruby:1.9.3:::::::*
cpe:2.3:a:ruby-lang:ruby:1.9.3:p545::::::
cpe:2.3:a:ruby-lang:ruby:2.1.2:::::::*
cpe:2.3:a:ruby-lang:ruby:2.0.0:p451::::::
cpe:2.3:a:ruby-lang:ruby:1.9.3:p392::::::
cpe:2.3:a:ruby-lang:ruby::p550::::::*		1.9.3
cpe:2.3:a:ruby-lang:ruby:1.9.3:p0::::::
cpe:2.3:a:ruby-lang:ruby:2.0.0:p576::::::

Related information, measures and tools

No	URL	タグ
1	http://advisories.mageia.org/MGASA-2014-0472.html
2	http://advisories.mageia.org/MGASA-2014-0472.html
3	http://lists.apple.com/archives/security-announce/2015/Sep/msg00008.html
4	http://lists.apple.com/archives/security-announce/2015/Sep/msg00008.html
5	http://lists.opensuse.org/opensuse-updates/2014-12/msg00035.html
6	http://lists.opensuse.org/opensuse-updates/2014-12/msg00035.html
7	http://lists.opensuse.org/opensuse-updates/2015-01/msg00000.html
8	http://lists.opensuse.org/opensuse-updates/2015-01/msg00000.html
9	http://lists.opensuse.org/opensuse-updates/2015-01/msg00004.html
10	http://lists.opensuse.org/opensuse-updates/2015-01/msg00004.html
11	http://rhn.redhat.com/errata/RHSA-2014-1911.html
12	http://rhn.redhat.com/errata/RHSA-2014-1911.html
13	http://rhn.redhat.com/errata/RHSA-2014-1912.html
14	http://rhn.redhat.com/errata/RHSA-2014-1912.html
15	http://rhn.redhat.com/errata/RHSA-2014-1913.html
16	http://rhn.redhat.com/errata/RHSA-2014-1913.html
17	http://rhn.redhat.com/errata/RHSA-2014-1914.html
18	http://rhn.redhat.com/errata/RHSA-2014-1914.html
19	http://secunia.com/advisories/59948
20	http://secunia.com/advisories/59948
21	http://secunia.com/advisories/62050
22	http://secunia.com/advisories/62050
23	http://secunia.com/advisories/62748
24	http://secunia.com/advisories/62748
25	http://www.debian.org/security/2015/dsa-3157
26	http://www.debian.org/security/2015/dsa-3157
27	http://www.debian.org/security/2015/dsa-3159
28	http://www.debian.org/security/2015/dsa-3159
29	http://www.mandriva.com/security/advisories?name=MDVSA-2015:129
30	http://www.mandriva.com/security/advisories?name=MDVSA-2015:129
31	http://www.oracle.com/technetwork/topics/security/linuxbulletinjan2016-2867209.html
32	http://www.oracle.com/technetwork/topics/security/linuxbulletinjan2016-2867209.html
33	http://www.securityfocus.com/bid/71230
34	http://www.securityfocus.com/bid/71230
35	http://www.ubuntu.com/usn/USN-2412-1	Patch Vendor Advisory
36	http://www.ubuntu.com/usn/USN-2412-1	Patch Vendor Advisory
37	https://support.apple.com/HT205267
38	https://support.apple.com/HT205267
39	https://www.ruby-lang.org/en/news/2014/11/13/rexml-dos-cve-2014-8090/	Exploit Vendor Advisory
40	https://www.ruby-lang.org/en/news/2014/11/13/rexml-dos-cve-2014-8090/	Exploit Vendor Advisory

Common Vulnerabilities List

JVN Vulnerability Information

Ruby の REXML パーサにおけるサービス運用妨害 (DoS) の脆弱性

Title	Ruby の REXML パーサにおけるサービス運用妨害 (DoS) の脆弱性
Summary	Ruby の REXML パーサには、サービス運用妨害 (CPU およびメモリ消費) 状態にされる脆弱性が存在します。本脆弱性は、CVE-2013-1821 および CVE-2014-8080 に対する修正が不十分だったことによる脆弱性です。補足情報 : CWE による脆弱性タイプは、CWE-611: Improper Restriction of XML External Entity Reference ('XXE') (XML 外部エンティティ参照の不適切な制限) と識別されています。 http://cwe.mitre.org/data/definitions/611.html
Possible impacts	第三者により、大量にネストされたエンティティ参照で使用されるエンティティ内の空の文字列を含む巧妙に細工された XML ドキュメント (別名 XML Entity Expansion (XEE) 攻撃) を介して、サービス運用妨害 (CPU およびメモリ消費)にされる可能性があります。
Solution	ベンダ情報および参考情報を参照して適切な対策を実施してください。
Publication Date	Nov. 13, 2014, midnight
Registration Date	Dec. 5, 2014, 11:23 a.m.
Last Update	Oct. 6, 2015, 10:33 a.m.

Affected System

アップル

Apple Mac OS X 10.6.8 以上 10.11 未満

Ruby-lang.org

Ruby 1.9.3 patchlevel 551 未満の 1.9.x

Ruby 2.0.0 patchlevel 598 未満の 2.0.x

Ruby 2.1.5 未満の 2.1.x

Ruby trunk revision 48402 未満

CVE (情報セキュリティ共通脆弱性識別子)

No	Name	URL
Common Vulnerabilities and Exposures (CVE)
1	CVE-2014-8090	http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8090
National Vulnerability Database (NVD)
2	CVE-2014-8090	http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2014-8090
Ruby News
3	CVE-2014-8090: Another Denial of Service XML Expansion	https://www.ruby-lang.org/en/news/2014/11/13/rexml-dos-cve-2014-8090/

CWE (共通脆弱性タイプ一覧)

No	Name	URL
JVNDB
1	CWE-Other	https://www.ipa.go.jp/security/vuln/CWE.html#CWEOther

ベンダー情報

No	Name	URL
Apple Mailing Lists
1	APPLE-SA-2015-09-30-3 OS X El Capitan 10.11	http://lists.apple.com/archives/security-announce/2015/Sep/msg00008.html
Apple Security Updates
2	HT205267	https://support.apple.com/en-us/HT205267
Apple セキュリティアップデート
3	HT205267	http://support.apple.com/ja-jp/HT205267
Red Hat Security Advisory
4	RHSA-2014:1911	https://rhn.redhat.com/errata/RHSA-2014-1911.html
5	RHSA-2014:1912	https://rhn.redhat.com/errata/RHSA-2014-1912.html
6	RHSA-2014:1913	https://rhn.redhat.com/errata/RHSA-2014-1913.html
7	RHSA-2014:1914	https://rhn.redhat.com/errata/RHSA-2014-1914.html
Ubuntu Security Notice
8	USN-2412-1	http://www.ubuntu.com/usn/USN-2412-1/

その他

No	Name	URL
JVN
1	JVNVU#97220341	http://jvn.jp/vu/JVNVU97220341/index.html
関連文書
2	MGASA-2014-0472	http://advisories.mageia.org/MGASA-2014-0472.html

Change Log

No	Changed Details	Date of change
0	[2014年12月05日] 掲載 [2015年06月04日] 参考情報：関連文書 (MGASA-2014-0472) を追加 [2015年10月06日] 影響を受けるシステム：ベンダ情報の追加に伴い内容を更新ベンダ情報：アップル (HT205267) を追加ベンダ情報：アップル (APPLE-SA-2015-09-30-3 OS X El Capitan 10.11) を追加参考情報：JVN (JVNVU#97220341) を追加	Feb. 17, 2018, 10:37 a.m.

Configuration1	or higher	or less	more than	less than
cpe:2.3:a:ruby-lang:ruby:1.9.3:p426::::::
cpe:2.3:a:ruby-lang:ruby:2.0.0:::::::*
cpe:2.3:a:ruby-lang:ruby:1.9.3:p448::::::
cpe:2.3:a:ruby-lang:ruby:2.0.0:p481::::::
cpe:2.3:a:ruby-lang:ruby:2.1.4:::::::*
cpe:2.3:a:ruby-lang:ruby:2.1.3:::::::*
cpe:2.3:a:ruby-lang:ruby:1.9.3:p286::::::
cpe:2.3:a:ruby-lang:ruby:1.9.3:p385::::::
cpe:2.3:a:ruby-lang:ruby:1.9.3:p383::::::
cpe:2.3:a:ruby-lang:ruby:2.0.0:p195::::::
cpe:2.3:a:ruby-lang:ruby:1.9.3:p429::::::
cpe:2.3:a:ruby-lang:ruby:2.1.1:::::::*
cpe:2.3:a:ruby-lang:ruby:2.0.0:p594::::::
cpe:2.3:a:ruby-lang:ruby:2.0.0:p247::::::
cpe:2.3:a:ruby-lang:ruby:1.9.3:p547::::::
cpe:2.3:a:ruby-lang:ruby:2.0.0:p0::::::
cpe:2.3:a:ruby-lang:ruby:1.9.3:p125::::::
cpe:2.3:a:ruby-lang:ruby:1.9.3:p194::::::
cpe:2.3:a:ruby-lang:ruby:1.9.3:::::::*
cpe:2.3:a:ruby-lang:ruby:1.9.3:p545::::::
cpe:2.3:a:ruby-lang:ruby:2.1.2:::::::*
cpe:2.3:a:ruby-lang:ruby:2.0.0:p451::::::
cpe:2.3:a:ruby-lang:ruby:1.9.3:p392::::::
cpe:2.3:a:ruby-lang:ruby::p550::::::*		1.9.3
cpe:2.3:a:ruby-lang:ruby:1.9.3:p0::::::
cpe:2.3:a:ruby-lang:ruby:2.0.0:p576::::::