Up ] Messaging ] Alerts ]

Vulnerabilities
Home News Listen Read Resources Feedback Contents Search RSS, Contacts

 

 

 

Sponsor Links
Fast, reliable data access for ODBC, JDBC, ADO.NET and XML
Need an expert for Java, XML and Web Services projects?
WSSC 2008: The only event dedicated to Web Services Security technology and business
IBM MQSeries for Compaq NSK - ( v. 5.1 ) - media
88x31 CTIX Logo - Clear Background
Microsoft SQL Server 2005 Standard Edition X64 - complete package
Corel DESIGNER Technical Suite - ( v. 12 ) - complete package
Find XML examples at XML Pitstop

 

Vulnerabilities and Threats
Platforms
 BEA WebLogic
Crimson
IIS
JRun
.NET
Oracle 9i XDB
Oracle 9iAS
Solaris
Sun ONE
SuSE Linux
WebSphere
Windows
Zope

XML
Acrobat
Attributes
Entities
Object Data

Messaging, SOAP
CPU-bound
Crimson
DTD
Memory leak
Parser
Server
WebDAV
XML-RPC

Other
Encryption
LDAP

 

Internet security problems are abundant but at  WebServicesSummit.com we put a spotlight on vulnerabilities related to XML processing and XML messaging, such as web services. This is not a comprehensive list, which had grown to more than 13,000 known vulnerabilities by the end of 2003.

Potential threats and security holes may take several forms. Failure to install security fixes invites unauthorized entry as much as leaving a safe or briefcase open and unattended.

Vulnerabilities such as buffer overrun in applications and services can expose your systems to the execution of malicious code and compromise confidential data. Bogus certificates, URL spoofing and IP spoofing can mask the true identity of the server or web site at the other end of a network connection.  Flawed logic in the processing of XML content by a web browser can expose security holes.

Vulnerabilities and threats listed on these pages are of several types. Some are security problems related to processing XML documents. Others are related to message processing, such as using XML remote procedure calls (RPCs), SOAP messaging and Web services. Still another category is vulnerabilities related to XML and database products. Also included here are vulnerabilities for platforms used to deliver web services, such as application servers.

 

There have been a number of specifications developed to provide secure processing for web services and service-oriented architectures (SOA). For more information about web services security, specifications, and security-related issues, WebServicesSummit.com offers webcasts, podcasts and slides from conference presentations.

Platform Vulnerabilities

Vulnerabilities in libxml Permit Arbitrary Code Execution
Improper handling by the xmlNanoFTPScanURL and xmlNanoFTPScanProxy functions may cause multiple buffer overflows that allow remote attackers to execute arbitrary code via a long FTP or proxy URL. Other overflows may be caused by manipulation of DNS length values in xmlNanoFTPConnect, xmlNanoHTTPConnectHost and xmlNanoHTTPConnectHost.

Solaris XML Library Buffer Overflow Vulnerability
A buffer overflow vulnerability in the Sun Solaris XML library may enable an attacker to execute arbitrary code. The vulnerability presents itself when the library processes malformed process HTML attributes.

Bug in SuSE Linux XML-RPC Library
A bug in the XML-RPC library allowed remote attackers to execute arbitrary code. It affects all SuSE Linux-based products.

BEA WebLogic config.xml Password Exposure Vulnerability
The BEA WebLogic server is vulnerable to a local attacker gaining information. The threat exists because the administrative password for the server is contained in the server's config.xml file.

Inadequate encryption by IBM WebSphere exposes passwords in XML files
IBM WebSphere Advanced Server 4.0.4 and prior versions use inadequate encryption to store security configuration passwords in an exported XML file. If you use the XML Configuration Management tool to export an XML file, an attacker can exploit the administrative server, LTPA, LDAP and other security configuration passwords. This vulnerability affect multiple WebSphere versions, including Linux, HP-UX, Windows NT, and Windows 2000.

Buffer overrun with Oracle9i Application Server
A buffer overrun in the Web Cache service of Oracle9iAS 2.0.0.1.0 could launch a denial of service attack. An attacker can send a specially-crafted HTTP request string of 3094 characters to a Web Cache service and overflow its buffer. This causes the process to use all available CPU resources. The affected Web Cache services include the Incoming Web Cache Proxy port, the Administrative port, the Web XML invalidation port, and the Statistics port.

Buffer Overflow in the XML Database of Oracle9i Database Server
The XML Database (XDB) feature of of the Oracle9i Database Release 2 is vulnerable to buffer overflows. A malicious user can exploit the buffer overruns to launch a denial of service (DoS) attack against the Oracle9i Database Server and/or capture an active user session.

Denial of service with Sun ONE Web Server
A vulnerability in the Sun ONE Web Server may be exploited to crash the web server.

WebDAV Message Handling Exploits with Some Windows Platforms
Users of Windows 2000 (SP3, SP4), Windows XP, XP SP1, 64-bit and Windows Server 2003 and 64-bit are vulnerable to a denial-of-service attack. It's
possible to compose a WebDAV request to servers running IIS and WebDAV that cause WebDAV to consume all available CPU and memory resources.

 

 

Banner
macmini_t1_120x90
Brand 120x240

 

 

Home ] Up ] Messaging ] Alerts ]

Copyright © 2008,  Ken North Computing, LLC
Last modified: March 31, 2008