Vulnerability by loading doctype-declaration of xml

From: Simon Schick Date: Wed, 29 Feb 2012 18:30:15 +0000

Subject: Vulnerability by loading doctype-declaration of xml

Groups: php.internals

Request: Send a blank email to [email protected] to get a copy of this message

Hi, all

I just read this post about a vulnerability by loading doctype-declaration
of an xml-string given in a request:
http://www.idontplaydarts.com/2011/02/scanning-the-internal-network-using-simplexml/

Would it be a good point to restrict which urls can be loaded in the
doctype, or is the following line the only possibility to prevent it in a
good way?
libxml_disable_entity_loader(true);

Bye
Simon

Thread (3 messages)

Simon SchickWed, 29 Feb 2012 18:30:15 +0000
Gustavo LopesWed, 29 Feb 2012 20:52:07 +0000
jpauliThu, 01 Mar 2012 10:03:03 +0000

« previous	php.internals (#58341)	next »

From:	Simon Schick	Date:	Wed, 29 Feb 2012 18:30:15 +0000
Subject:	Vulnerability by loading doctype-declaration of xml
Groups:	php.internals
Request:	Send a blank email to [email protected] to get a copy of this message