I am working on an app which takes XML file as input and then processes it. We found out that the app is vulnerable to XXE DoS attack, namely famous Billion Laughs case. Before the file is processed, it is validated against schema. So, my question is, will the DoS attack take place during the validation? Or during the validation the XML entities are not expanded and hence the DoS attack will happen only after validation, when validated file is parsed?
XML External Entity Vulnerability DoS case: when the expansion happens?
177 views Asked by Russell'sTeapot At
1
There are 1 answers
Related Questions in XML
- Postgres && statement Error in Mybatis Mapper?
- Sorting items after building an XML feed?
- C# XML ModelBinding - ASP.NET Core 8 Web API - required field not found
- How can I create an automatic table of contents in docx without the text being bold?
- Odoo 16 Make Fields Readonly Using XPath
- Using similar tags for different objects in XML
- Android Studio problem like gradle sync project failed and plugin error, version 2023.2.1 Iguana
- error: cannot find symbol View root = inflater.inflate(R.layout.toolbar, parent, false);
- Android camera application restriction to 12 mp
- Azure Data Factory Copy Activity Only Importing First Row of XML file
- I am not able to remove space below the navigation view icon in android studio. What;s wrong with code?
- Field can be converted to a local variable ,convert field to local variable in onCreate method
- Deserialize XML with optional different name
- Retrieve tags from xml using python
- Getting attribute from xml and printing it error
Related Questions in VALIDATION
- Terraform valdiate that one of N variables is set to "true"
- How to validate if Confirm Password is same or not with the Password in React Native using ValidateJS?
- How to create yup schema for dynamic array of different objects
- Quintic Number Number Counting Hash Function
- DropdownButtonFormField doesn't apply custom InputDecoration style
- Is there a way to set a cells value based on the value this cell held at a certain time, even when the cell value changes over time?
- Multiple regex expressions to check mobile number in javascript
- Java Pojos - Setter-Call (Field Touched) Detection
- Input Field Required
- Angular restore ngModel input field to it's previous value
- Bean Validaton : org.springframework.web.bind.MethodArgumentNotValidException
- javax validation not working on spring boot
- How to show warning message for unmatched confirm password
- Flutter TextFormField validation with Firestore
- eval_set in CatBoostRegressor
Related Questions in BATCH-FILE
- .bat file - How can I return the value of a variable whose name depends on another variable concatenated with a string in a batch file?
- Discordbot(Python) who should start bat file(Minecraft server) can't find user_jvm_args.txt file
- Set req query output to a variable
- bat file creates a "corrupt" zip
- How to list several items in the dialog box for execution?
- "if contains" with forbidden special characters
- Overlaying frame number with ffmpeg
- Batch Script-Powershell MessageBox | How do I set TopMost within PS command line of Batch?
- Batch file no longer works correctly in Windows 11
- Trying to launch batch file from powershell, and immediately closes
- How to automate an SSH login with a batch file?
- Having trouble executing my program from a jar, using Jinput
- How can I unload Visual Studio projects via batch file/developer command prompt?
- How to use goto in nested loop in .bat script window
- How can I run this Powershell function from a batch file on windows?
Related Questions in DENIAL-OF-SERVICE
- Denial of service: regular expression
- Confirm API is called by known application
- Sonar scan reports issue in Regex
- Denial of service protection: how to reject connections based on content and frequency (golang as example)
- Regex vulnerable to polynomial runtime
- How does this Scapy DHCP DoS/Exhaustion attack work?
- Why is a StackOverflowError worth a CVE?
- Convert pixels to cm using Python
- SonarQube: denial of service for regex pattern due to polynomial runtime backtracking
- How is expanding %(describe) during a git archive a denial-of-service (DOS) risk?
- Checkmarx Resource Exhaustion in Golang url.Parse
- Preconditions for SpEL DoS vulnerability CVE-2022-22950?
- Is it possible to dispatch a successful DOS attack on a firewall with all ports closed?
- Can you limit the size of data that can be deserialized in Ktor?
- Matching user-input text with a user-input regex in Node.js
Related Questions in XXE
- 'XML External Entity Injection' issue isn't resolving even after fortify recommended suggestion
- XXE Prevention of Spring Webservice Soap Reaquest
- Validate xml against a given xsd in static block vs non-static
- How to prevent XML external entity attack (XXE attack) on SOAP Request(Jaxws-spring) Webservice
- TransformerFactory with FOP : Issue when disabling ACCESS_EXTERNAL_DTD
- Unexpected Veracode error "Improper Restriction of XML External Entity Reference (CWE ID 611)" (XMLInputFactory vulnerable to XXE)
- How to prevent XXE attacks on dom4j 2.1.1?
- java.lang.IllegalArgumentException: Not supported: http://javax.xml.XMLConstants/property/accessExternalDTD
- Does having to be an authenticated and authorized user to access a feature reduce or eliminate the risk and impact of a security vulnerability?
- Hi, I'm facing a blocker in a SonarQube violation - Disable access to external entities in XML parsing
- What is the meaning of '%' in this XML DTD?
- Web Api XXE(Xml eXternal Entity) injection despite not allowing XML
- XXE prevention with RestTemplate SpringBoot 2.3.3
- IllegalArgumentException: Not supported when implement sonarqube solution for "XML parsers should not be vulnerable to XXE attacks"
- How to assign XML DTD entity to attribute value
Popular Questions
- How do I undo the most recent local commits in Git?
- How can I remove a specific item from an array in JavaScript?
- How do I delete a Git branch locally and remotely?
- Find all files containing a specific text (string) on Linux?
- How do I revert a Git repository to a previous commit?
- How do I create an HTML button that acts like a link?
- How do I check out a remote Git branch?
- How do I force "git pull" to overwrite local files?
- How do I list all files of a directory?
- How to check whether a string contains a substring in JavaScript?
- How do I redirect to another webpage?
- How can I iterate over rows in a Pandas DataFrame?
- How do I convert a String to an int in Java?
- Does Python have a string 'contains' substring method?
- How do I check if a string contains a specific word?
Trending Questions
- UIImageView Frame Doesn't Reflect Constraints
- Is it possible to use adb commands to click on a view by finding its ID?
- How to create a new web character symbol recognizable by html/javascript?
- Why isn't my CSS3 animation smooth in Google Chrome (but very smooth on other browsers)?
- Heap Gives Page Fault
- Connect ffmpeg to Visual Studio 2008
- Both Object- and ValueAnimator jumps when Duration is set above API LvL 24
- How to avoid default initialization of objects in std::vector?
- second argument of the command line arguments in a format other than char** argv or char* argv[]
- How to improve efficiency of algorithm which generates next lexicographic permutation?
- Navigating to the another actvity app getting crash in android
- How to read the particular message format in android and store in sqlite database?
- Resetting inventory status after order is cancelled
- Efficiently compute powers of X in SSE/AVX
- Insert into an external database using ajax and php : POST 500 (Internal Server Error)
Basically, a parser MUST expand entities to validate a document (see 4.4.3 in XML recommendation), since your entities may include some markup, and build up a valid document.
So yes, the problem may occur during validation of the XML file.