CWE-827

Improper Control of Document Type Definition

Variant

Incomplete

Description

The product does not restrict a reference to a Document Type Definition (DTD) to the intended control sphere. This might allow attackers to reference arbitrary DTDs, possibly causing the product to expose files, consume excessive system resources, or execute arbitrary http requests on behalf of the attacker.

{"xhtml:p":["As DTDs are processed, they might try to read or include files on the machine performing the parsing. If an attacker is able to control the DTD, then the attacker might be able to specify sensitive resources or requests or provide malicious content.","For example, the SOAP specification prohibits SOAP messages from containing DTDs."]}

Parent Weaknesses (ChildOf)

CWE-706: Use of Incorrectly-Resolved Na...

CWE-829: Inclusion of Functionality fro...

Related Weaknesses

CWE-776 (CanPrecede)

Common Consequences

Scope

Confidentiality

Impact

Read Files or Directories

Scope

Availability

Impact

DoS: Resource Consumption (CPU), DoS: Resource Consumption (Memory)

Scope

Integrity

Confidentiality

Availability

Access Control

Impact

Execute Unauthorized Code or Commands, Gain Privileges or Assume Identity

CVE-2010-2076

Product does not properly reject DTDs in SOAP messages, which allows remote attackers to read arbitrary files, send HTTP requests to intranet servers, or cause a denial of service.

Applicable Platforms

XML

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Start Training

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

Scan Now

CWE-827

Improper Control of Document Type Definition

Description

Relationships

Common Consequences

Related CVEs

Applicable Platforms