This CPE summary could be partial or incomplete. Please contact us for a detailed listing.
Summary
| Summuary | |
|---|---|
| CPE Name | cpe:/a:xmlsoft:libxml2:2.6.27 |
| Detail | |||
|---|---|---|---|
| Vendor | Xmlsoft | First view | 2008-09-12 |
| Product | libxml2 | Last view | 2013-04-25 |
| Version | 2.6.27 | Type | Application |
| Edition | |||
| Language | |||
| Update | |||
| CPE Product | cpe:/a:xmlsoft:libxml2 | ||
Activity : Yearly
Related : CVE
| Date | Alert | Access Vector | Access Complexity | Authentification | ||
|---|---|---|---|---|---|---|
| 4.3 | 2013-04-25 | CVE-2013-0338 | Network | Medium | None Requ... | |
| 5 | 2012-12-21 | CVE-2012-0841 | Network | Low | None Requ... | |
| 6.8 | 2012-11-27 | CVE-2012-5134 | Network | Medium | None Requ... | |
| 9.3 | 2011-09-02 | CVE-2011-1944 | Network | Medium | None Requ... | |
| 4.3 | 2010-11-16 | CVE-2010-4008 | Network | Medium | None Requ... | |
| Date | Alert | Access Vector | Access Complexity | Authentification | ||
|---|---|---|---|---|---|---|
| 4.3 | 2009-08-11 | CVE-2009-2416 | Network | Medium | None Requ... | |
| 4.3 | 2009-08-11 | CVE-2009-2414 | Network | Medium | None Requ... | |
| 10 | 2008-09-12 | CVE-2008-3529 | Network | Low | None Requ... |
CWE : Common Weakness Enumeration
| % | id | Name |
|---|---|---|
| 62% (5) | CWE-119 | Failure to Constrain Operations within the Bounds of a Memory Buffer |
| 25% (2) | CWE-399 | Resource Management Errors |
| 12% (1) | CWE-189 | Numeric Errors |
Oval Markup Language : Definitions
| OvalID | Name |
|---|---|
| oval:org.mitre.oval:def:6103 | Libxml2 Heap Overflow in xmlParseAttValueComplex() Lets Remote Users Execute ... |
| oval:org.mitre.oval:def:11760 | Heap-based buffer overflow in the xmlParseAttValueComplex function in parser.... |
| oval:org.mitre.oval:def:8639 | VMware libxml2 stack consumption vulnerability |
| oval:org.mitre.oval:def:10129 | Stack consumption vulnerability in libxml2 2.5.10, 2.6.16, 2.6.26, 2.6.27, an... |
| oval:org.mitre.oval:def:9262 | Multiple use-after-free vulnerabilities in libxml2 2.5.10, 2.6.16, 2.6.26, 2.... |
| id | Name |
|---|---|
| oval:org.mitre.oval:def:7783 | VMware libxml2 use-after-free vulnerability |
| oval:org.mitre.oval:def:12148 | Vulnerability in libxml2 in Google Chrome before 7.0.517.44 |
Open Source Vulnerability Database (OSVDB)
| id | Description |
|---|---|
| 73248 | libxml2 xpath.c Xpath Nodeset Processing Overflow |
| 69205 | libxml2 Crafted XML File XPath Axis Traversal DoS |
| 56990 | libxml2 DTD Element Declaration Handling Stack Consumption DoS |
| 56985 | libxml2 XML File Multiple Attribute Type Handling DoS |
| 48158 | libxml2 parser.c xmlParseAttValueComplex Function XML Entity Name Handling DoS |
Milw0rm Exploits
| id | Description |
|---|---|
| 2009-05-26 | Safari RSS feed:// Buffer Overflow via libxml2 Exploit PoC |
ExploitDB Exploits
| id | Description |
|---|---|
| 8798 | Safari RSS feed:// Buffer Overflow via libxml2 Exploit PoC |
