CVE-2004-2160

Published: Dec 31, 2004Modified: Apr 16, 2026

6.4

Vector

AV:N/AC:L/Au:N/C:N/I:P/A:P

Exploitability: 10.0 / Impact: 4.9

Source: NVD

Description

Format string vulnerability in xml_elem.c for XMLStarlet Command Line XML Toolkit 0.9.3 may allow attackers to cause a denial of service or execute arbitrary code.

Affected (1)

Products: Xmlstarlet: Command Line Xml Toolkit

Xmlstarlet

1 product

Command Line Xml Toolkit

Configuration A

1 vulnerable

Vulnerable Software	Affected Versions
Xmlstarlet Command Line Xml Toolkit	Version 0.9.3

References (4)

http://cvs.sourceforge.net/viewcvs.py/xmlstar/xmlstarlet/src/xml_elem.c?r1=1.17&r2=1.18

Source: cve@mitre.org

http://sourceforge.net/project/shownotes.php?release_id=268962

Source: cve@mitre.org

Patch

http://cvs.sourceforge.net/viewcvs.py/xmlstar/xmlstarlet/src/xml_elem.c?r1=1.17&r2=1.18

Source: af854a3a-2127-422b-91ae-364da2661108

http://sourceforge.net/project/shownotes.php?release_id=268962

Source: af854a3a-2127-422b-91ae-364da2661108

Patch

Timeline

No history available yet.