CVE-2004-0110

Published: Mar 15, 2004Modified: Apr 16, 2026

7.5

Vector

AV:N/AC:L/Au:N/C:P/I:P/A:P

Exploitability: 10.0 / Impact: 6.4

Source: NVD

Description

Buffer overflow in the (1) nanohttp or (2) nanoftp modules in XMLSoft Libxml 2 (Libxml2) 2.6.0 through 2.6.5 allow remote attackers to execute arbitrary code via a long URL.

Affected (14)

Products: Sgi: Propack · Xmlsoft: Libxml, Libxml2

1 product

2 products

Configuration A

14 vulnerable

Vulnerable Software	Affected Versions
Sgi Propack	Version 2.3
Sgi Propack	Version 2.4
Xmlsoft Libxml	Version 1.8.17
Xmlsoft Libxml2	Version 2.4.19
Xmlsoft Libxml2	Version 2.4.23
Xmlsoft Libxml2	Version 2.5.10
Xmlsoft Libxml2	Version 2.5.11
Xmlsoft Libxml2	Version 2.5.4
Xmlsoft Libxml2	Version 2.6.0
Xmlsoft Libxml2	Version 2.6.1
Xmlsoft Libxml2	Version 2.6.2
Xmlsoft Libxml2	Version 2.6.3
Xmlsoft Libxml2	Version 2.6.4
Xmlsoft Libxml2	Version 2.6.5

References (36)

http://marc.info/?l=bugtraq&m=107851606605420&w=2

Source: cve@mitre.org

http://marc.info/?l=bugtraq&m=107860178228804&w=2

Source: cve@mitre.org

http://rhn.redhat.com/errata/RHSA-2004-090.html

Source: cve@mitre.org

PatchVendor Advisory

http://secunia.com/advisories/10958/

Source: cve@mitre.org

http://security.gentoo.org/glsa/glsa-200403-01.xml

Source: cve@mitre.org

http://www.ciac.org/ciac/bulletins/o-086.shtml

Source: cve@mitre.org

http://www.debian.org/security/2004/dsa-455

Source: cve@mitre.org

http://www.kb.cert.org/vuls/id/493966

Source: cve@mitre.org

US Government Resource

http://www.novell.com/linux/security/advisories/2005_01_sr.html

Source: cve@mitre.org

http://www.redhat.com/support/errata/RHSA-2004-091.html

Source: cve@mitre.org

http://www.redhat.com/support/errata/RHSA-2004-650.html

Source: cve@mitre.org

http://www.securityfocus.com/bid/9718

Source: cve@mitre.org

PatchVendor Advisory

http://www.xmlsoft.org/news.html

Source: cve@mitre.org

https://exchange.xforce.ibmcloud.com/vulnerabilities/15301

Source: cve@mitre.org

https://exchange.xforce.ibmcloud.com/vulnerabilities/15302

Source: cve@mitre.org

https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11626

Source: cve@mitre.org

https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A833

Source: cve@mitre.org

https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A875

Source: cve@mitre.org

http://marc.info/?l=bugtraq&m=107851606605420&w=2

Source: af854a3a-2127-422b-91ae-364da2661108

http://marc.info/?l=bugtraq&m=107860178228804&w=2

Source: af854a3a-2127-422b-91ae-364da2661108

http://rhn.redhat.com/errata/RHSA-2004-090.html

Source: af854a3a-2127-422b-91ae-364da2661108

PatchVendor Advisory

http://secunia.com/advisories/10958/

Source: af854a3a-2127-422b-91ae-364da2661108

http://security.gentoo.org/glsa/glsa-200403-01.xml

Source: af854a3a-2127-422b-91ae-364da2661108

http://www.ciac.org/ciac/bulletins/o-086.shtml

Source: af854a3a-2127-422b-91ae-364da2661108

http://www.debian.org/security/2004/dsa-455

Source: af854a3a-2127-422b-91ae-364da2661108

http://www.kb.cert.org/vuls/id/493966

Source: af854a3a-2127-422b-91ae-364da2661108

US Government Resource

http://www.novell.com/linux/security/advisories/2005_01_sr.html

Source: af854a3a-2127-422b-91ae-364da2661108

http://www.redhat.com/support/errata/RHSA-2004-091.html

Source: af854a3a-2127-422b-91ae-364da2661108

http://www.redhat.com/support/errata/RHSA-2004-650.html

Source: af854a3a-2127-422b-91ae-364da2661108

http://www.securityfocus.com/bid/9718

Source: af854a3a-2127-422b-91ae-364da2661108

PatchVendor Advisory

http://www.xmlsoft.org/news.html

Source: af854a3a-2127-422b-91ae-364da2661108

https://exchange.xforce.ibmcloud.com/vulnerabilities/15301

Source: af854a3a-2127-422b-91ae-364da2661108

https://exchange.xforce.ibmcloud.com/vulnerabilities/15302

Source: af854a3a-2127-422b-91ae-364da2661108

https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11626

Source: af854a3a-2127-422b-91ae-364da2661108

https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A833

Source: af854a3a-2127-422b-91ae-364da2661108

https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A875

Source: af854a3a-2127-422b-91ae-364da2661108

Timeline

No history available yet.