CWE-827: Improper Control of Document Type Definition

The product does not restrict a reference to a Document Type Definition (DTD) to the intended control sphere. This might allow attackers to reference arbitrary DTDs, possibly causing the product to expose files, consume excessive system resources, or execute arbitrary http requests on behalf of the attacker.

Recorded CVEs

With this primary weakness

KEVs

In the CISA KEV catalog

Not rated

Likelihood of exploit

Per MITRE

Variant

Abstraction

MITRE classification

Overview

As DTDs are processed, they might try to read or include files on the machine performing the parsing. If an attacker is able to control the DTD, then the attacker might be able to specify sensitive resources or requests or provide malicious content. For example, the SOAP specification prohibits SOAP messages from containing DTDs.

CWE-827: Improper Control of Document Type Definition

Overview

Real-world CVEs

Common consequences

How it happens

When it is introduced

Applies to

Illustrative examples

Frequently asked questions

What is CWE-827?

What CVEs are caused by CWE-827?

What are the consequences of CWE-827?

Is CWE-827 actively exploited?

References

Stay ahead of CWE-827

Overview

Real-world CVEs

Common consequences

How it happens

When it is introduced

Applies to

Illustrative examples

Related weaknesses

Parent

Can precede

Frequently asked questions

What is CWE-827?

What CVEs are caused by CWE-827?

What are the consequences of CWE-827?

Is CWE-827 actively exploited?

References

Stay ahead of CWE-827