CVE-2016-9909 - Vulnerability Details - OpenCVE

The serializer in html5lib before 0.99999999 might allow remote attackers to conduct cross-site scripting (XSS) attacks by leveraging mishandling of the < (less than) character in attribute values.

No CVSS v4.0

No CVSS v3.1

Attack Vector Network

Attack Complexity Low

Privileges Required None

Scope Changed

Confidentiality Impact Low

Integrity Impact Low

Availability Impact None

User Interaction Required

Access Vector Network

Access Complexity Medium

Authentication None

Confidentiality Impact None

Integrity Impact Partial

Availability Impact None

This CVE is not in the KEV list.

Key SSVC decision points have not yet been added.

Vendors	Products
Html5lib	Html5lib

Configuration 1 [-]

cpe:2.3:a:html5lib:html5lib:*:1.0b8:*:*:*:*:*:*

No data.

References

Link	Providers
https://www.spirityenterprise.com/pentest
http://www.openwall.com/lists/oss-security/2016/12/06/5
http://www.openwall.com/lists/oss-security/2016/12/08/8
http://www.securityfocus.com/bid/95132
https://github.com/html5lib/html5lib-python/commit/9b8d8eb5afbc066b7fac9390f5ec75e5e8a7cab7
https://github.com/html5lib/html5lib-python/issues/11
https://github.com/html5lib/html5lib-python/issues/12
https://html5lib.readthedocs.io/en/latest/changes.html#b9

History

No history.

MITRE

Status: PUBLISHED

Assigner: redhat

Published: 2017-02-22T16:00:00.000Z

Updated: 2024-08-06T03:07:31.885Z

Reserved: 2016-12-08T00:00:00.000Z

Link: CVE-2016-9909

Vulnrichment

No data.

NVD

Status : Modified

Published: 2017-02-22T16:59:00.380

Modified: 2026-05-13T00:24:29.033

Link: CVE-2016-9909

Redhat

No data.

{"containers": {"cna": {"affected": [{"product": "n/a", "vendor": "n/a", "versions": [{"status": "affected", "version": "n/a"}]}], "datePublic": "2016-12-06T00:00:00.000Z", "descriptions": [{"lang": "en", "value": "The serializer in html5lib before 0.99999999 might allow remote attackers to conduct cross-site scripting (XSS) attacks by leveraging mishandling of the < (less than) character in attribute values."}], "problemTypes": [{"descriptions": [{"description": "n/a", "lang": "en", "type": "text"}]}], "providerMetadata": {"dateUpdated": "2017-02-22T15:57:01.000Z", "orgId": "53f830b8-0a3f-465b-8143-3b8a9948e749", "shortName": "redhat"}, "references": [{"tags": ["x_refsource_CONFIRM"], "url": "https://github.com/html5lib/html5lib-python/issues/12"}, {"tags": ["x_refsource_CONFIRM"], "url": "https://html5lib.readthedocs.io/en/latest/changes.html#b9"}, {"name": "[oss-security] 20161206 CVE Request: html5lib: potential cross-site scripting vulnerablity: quote attributes that need escaping in legacy browsers", "tags": ["mailing-list", "x_refsource_MLIST"], "url": "http://www.openwall.com/lists/oss-security/2016/12/06/5"}, {"name": "[oss-security] 20161208 Re: CVE Request: html5lib: potential cross-site scripting vulnerablity: quote attributes that need escaping in legacy browsers", "tags": ["mailing-list", "x_refsource_MLIST"], "url": "http://www.openwall.com/lists/oss-security/2016/12/08/8"}, {"name": "95132", "tags": ["vdb-entry", "x_refsource_BID"], "url": "http://www.securityfocus.com/bid/95132"}, {"tags": ["x_refsource_CONFIRM"], "url": "https://github.com/html5lib/html5lib-python/commit/9b8d8eb5afbc066b7fac9390f5ec75e5e8a7cab7"}, {"tags": ["x_refsource_CONFIRM"], "url": "https://github.com/html5lib/html5lib-python/issues/11"}], "x_legacyV4Record": {"CVE_data_meta": {"ASSIGNER": "secalert@redhat.com", "ID": "CVE-2016-9909", "STATE": "PUBLIC"}, "affects": {"vendor": {"vendor_data": [{"product": {"product_data": [{"product_name": "n/a", "version": {"version_data": [{"version_value": "n/a"}]}}]}, "vendor_name": "n/a"}]}}, "data_format": "MITRE", "data_type": "CVE", "data_version": "4.0", "description": {"description_data": [{"lang": "eng", "value": "The serializer in html5lib before 0.99999999 might allow remote attackers to conduct cross-site scripting (XSS) attacks by leveraging mishandling of the < (less than) character in attribute values."}]}, "problemtype": {"problemtype_data": [{"description": [{"lang": "eng", "value": "n/a"}]}]}, "references": {"reference_data": [{"name": "https://github.com/html5lib/html5lib-python/issues/12", "refsource": "CONFIRM", "url": "https://github.com/html5lib/html5lib-python/issues/12"}, {"name": "https://html5lib.readthedocs.io/en/latest/changes.html#b9", "refsource": "CONFIRM", "url": "https://html5lib.readthedocs.io/en/latest/changes.html#b9"}, {"name": "[oss-security] 20161206 CVE Request: html5lib: potential cross-site scripting vulnerablity: quote attributes that need escaping in legacy browsers", "refsource": "MLIST", "url": "http://www.openwall.com/lists/oss-security/2016/12/06/5"}, {"name": "[oss-security] 20161208 Re: CVE Request: html5lib: potential cross-site scripting vulnerablity: quote attributes that need escaping in legacy browsers", "refsource": "MLIST", "url": "http://www.openwall.com/lists/oss-security/2016/12/08/8"}, {"name": "95132", "refsource": "BID", "url": "http://www.securityfocus.com/bid/95132"}, {"name": "https://github.com/html5lib/html5lib-python/commit/9b8d8eb5afbc066b7fac9390f5ec75e5e8a7cab7", "refsource": "CONFIRM", "url": "https://github.com/html5lib/html5lib-python/commit/9b8d8eb5afbc066b7fac9390f5ec75e5e8a7cab7"}, {"name": "https://github.com/html5lib/html5lib-python/issues/11", "refsource": "CONFIRM", "url": "https://github.com/html5lib/html5lib-python/issues/11"}]}}}, "adp": [{"providerMetadata": {"orgId": "af854a3a-2127-422b-91ae-364da2661108", "shortName": "CVE", "dateUpdated": "2024-08-06T03:07:31.885Z"}, "title": "CVE Program Container", "references": [{"tags": ["x_refsource_CONFIRM", "x_transferred"], "url": "https://github.com/html5lib/html5lib-python/issues/12"}, {"tags": ["x_refsource_CONFIRM", "x_transferred"], "url": "https://html5lib.readthedocs.io/en/latest/changes.html#b9"}, {"name": "[oss-security] 20161206 CVE Request: html5lib: potential cross-site scripting vulnerablity: quote attributes that need escaping in legacy browsers", "tags": ["mailing-list", "x_refsource_MLIST", "x_transferred"], "url": "http://www.openwall.com/lists/oss-security/2016/12/06/5"}, {"name": "[oss-security] 20161208 Re: CVE Request: html5lib: potential cross-site scripting vulnerablity: quote attributes that need escaping in legacy browsers", "tags": ["mailing-list", "x_refsource_MLIST", "x_transferred"], "url": "http://www.openwall.com/lists/oss-security/2016/12/08/8"}, {"name": "95132", "tags": ["vdb-entry", "x_refsource_BID", "x_transferred"], "url": "http://www.securityfocus.com/bid/95132"}, {"tags": ["x_refsource_CONFIRM", "x_transferred"], "url": "https://github.com/html5lib/html5lib-python/commit/9b8d8eb5afbc066b7fac9390f5ec75e5e8a7cab7"}, {"tags": ["x_refsource_CONFIRM", "x_transferred"], "url": "https://github.com/html5lib/html5lib-python/issues/11"}]}]}, "cveMetadata": {"assignerOrgId": "53f830b8-0a3f-465b-8143-3b8a9948e749", "assignerShortName": "redhat", "cveId": "CVE-2016-9909", "datePublished": "2017-02-22T16:00:00.000Z", "dateReserved": "2016-12-08T00:00:00.000Z", "dateUpdated": "2024-08-06T03:07:31.885Z", "state": "PUBLISHED"}, "dataType": "CVE_RECORD", "dataVersion": "5.1"}

{"configurations": [{"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:a:html5lib:html5lib:*:1.0b8:*:*:*:*:*:*", "matchCriteriaId": "18761624-335A-475D-A79F-625735B9FF3D", "versionEndIncluding": "0.99999999", "vulnerable": true}], "negate": false, "operator": "OR"}]}], "cveTags": [], "descriptions": [{"lang": "en", "value": "The serializer in html5lib before 0.99999999 might allow remote attackers to conduct cross-site scripting (XSS) attacks by leveraging mishandling of the < (less than) character in attribute values."}, {"lang": "es", "value": "El serializador en html5lib en versiones anteriores a 0.99999999 podr\u00eda permitir a atacantes remotos llevar a cabo ataques de XSS aprovechando el manejo incorrecto del car\u00e1cter < (menor que) en valores de atributo."}], "id": "CVE-2016-9909", "lastModified": "2026-05-13T00:24:29.033", "metrics": {"cvssMetricV2": [{"acInsufInfo": false, "baseSeverity": "MEDIUM", "cvssData": {"accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "NONE", "baseScore": 4.3, "confidentialityImpact": "NONE", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:N/I:P/A:N", "version": "2.0"}, "exploitabilityScore": 8.6, "impactScore": 2.9, "obtainAllPrivilege": false, "obtainOtherPrivilege": false, "obtainUserPrivilege": false, "source": "nvd@nist.gov", "type": "Primary", "userInteractionRequired": true}], "cvssMetricV30": [{"cvssData": {"attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "NONE", "baseScore": 6.1, "baseSeverity": "MEDIUM", "confidentialityImpact": "LOW", "integrityImpact": "LOW", "privilegesRequired": "NONE", "scope": "CHANGED", "userInteraction": "REQUIRED", "vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N", "version": "3.0"}, "exploitabilityScore": 2.8, "impactScore": 2.7, "source": "nvd@nist.gov", "type": "Primary"}]}, "published": "2017-02-22T16:59:00.380", "references": [{"source": "secalert@redhat.com", "tags": ["Mailing List", "Patch", "Third Party Advisory"], "url": "http://www.openwall.com/lists/oss-security/2016/12/06/5"}, {"source": "secalert@redhat.com", "tags": ["Mailing List", "Patch", "Third Party Advisory"], "url": "http://www.openwall.com/lists/oss-security/2016/12/08/8"}, {"source": "secalert@redhat.com", "tags": ["Third Party Advisory", "VDB Entry"], "url": "http://www.securityfocus.com/bid/95132"}, {"source": "secalert@redhat.com", "tags": ["Patch"], "url": "https://github.com/html5lib/html5lib-python/commit/9b8d8eb5afbc066b7fac9390f5ec75e5e8a7cab7"}, {"source": "secalert@redhat.com", "tags": ["Vendor Advisory"], "url": "https://github.com/html5lib/html5lib-python/issues/11"}, {"source": "secalert@redhat.com", "tags": ["Vendor Advisory"], "url": "https://github.com/html5lib/html5lib-python/issues/12"}, {"source": "secalert@redhat.com", "tags": ["Release Notes"], "url": "https://html5lib.readthedocs.io/en/latest/changes.html#b9"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Mailing List", "Patch", "Third Party Advisory"], "url": "http://www.openwall.com/lists/oss-security/2016/12/06/5"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Mailing List", "Patch", "Third Party Advisory"], "url": "http://www.openwall.com/lists/oss-security/2016/12/08/8"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Third Party Advisory", "VDB Entry"], "url": "http://www.securityfocus.com/bid/95132"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Patch"], "url": "https://github.com/html5lib/html5lib-python/commit/9b8d8eb5afbc066b7fac9390f5ec75e5e8a7cab7"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Vendor Advisory"], "url": "https://github.com/html5lib/html5lib-python/issues/11"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Vendor Advisory"], "url": "https://github.com/html5lib/html5lib-python/issues/12"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Release Notes"], "url": "https://html5lib.readthedocs.io/en/latest/changes.html#b9"}], "sourceIdentifier": "secalert@redhat.com", "vulnStatus": "Modified", "weaknesses": [{"description": [{"lang": "en", "value": "CWE-79"}], "source": "nvd@nist.gov", "type": "Primary"}]}