NVD

Id
17756  
Name
CVE-2016-1343  
Description
The XML parser in Cisco Information Server (CIS) 6.2 allows remote attackers to read arbitrary files or cause a denial of service (CPU and memory consumption) via an external entity declaration in conjunction with an entity reference, related to an XML External Entity (XXE) issue, aka Bug ID CSCuy39059.  
Reject
 
CVSS Version
2  
CVSS Score
6.4  
Severity
Medium  
CVSS Base Score
6.4  
CVSS Impact Subscore
4.9  
CVSS Exploit Subscore
10  
CVSS Vector
(AV:N/AC:L/Au:N/C:P/I:N/A:P)  
Pub Date
2017-01-19  
Published
2016-04-30  
Modified Date
2016-05-04  
Seq
2016-1343  

Actions

Related NVD References

Id NVD Id NVD No. Reference Actions
97656 17756 CVE-2016-1343 20160428 Cisco Information Server XML Parser Denial of Service Vulnerability  View

Related JVN

Id Name Title Summary Cveinfo Name Cveinfo Id Nvdinfo Name Nvdinfo Id Cvssv2 Cvssv3 Jvnurl Published Date Last Updated Date Actions
1638 JVNDB-2016-002411 Cisco Information Server の XML パーサにおける任意のファイルを読まれる脆弱性 Cisco Information Server (CIS) の XML パーサには、任意のファイルを読まれる、またはサービス運用妨害 (CPU 資源およびメモリの消費) 状態にされる脆弱性が存在します。 CVE-2016-1343 87849 CVE-2016-1343 17756 6.4 10 http://jvndb.jvn.jp/ja/contents/2016/JVNDB-2016-002411.html 2016-04-28 2016-05-06 View