Buffer overflow in MarkLogic

Published: 2018-04-24 | Updated: 2020-08-08

Risk	High
Patch available	YES
Number of vulnerabilities	1
CVE-ID	CVE-2016-8382
CWE-ID	CWE-119
Exploitation vector	Network
Public exploit	N/A
Vulnerable software	MarkLogic Server applications / SCADA systems
Vendor	MarkLogic

Security Bulletin

This security bulletin contains one high risk vulnerability.

1) Buffer overflow

EUVDB-ID: #VU37158

Risk: High

CVSSv4.0: 6.1 [CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:A/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/U:Amber]

CVE-ID: CVE-2016-8382

CWE-ID: CWE-119 - Memory corruption

Exploit availability: No

Description

The vulnerability allows a remote non-authenticated attacker to execute arbitrary code.

An exploitable heap corruption vulnerability exists in the Doc_SetSummary functionality of AntennaHouse DMC HTMLFilter. A specially crafted doc file can cause a heap corruption resulting in arbitrary code execution. An attacker can send a malicious doc file to trigger this vulnerability.

Mitigation

Install update from vendor's website.

Vulnerable software versions

MarkLogic: 8.0-5.5

CPE2.3

cpe:2.3:a:marklogic:marklogic:8.0-5.5:*:*:*:*:*:*:*

External links

https://www.talosintelligence.com/vulnerability_reports/TALOS-2016-0207

Q & A

Can this vulnerability be exploited remotely?

Yes. This vulnerability can be exploited by a remote non-authenticated attacker via the Internet.

How the attacker can exploit this vulnerability?

The attacker would have to send a specially crafted request to the affected application in order to exploit this vulnerability.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.