This CPE summary could be partial or incomplete. Please contact us for a detailed listing.
Summary
| Summuary | |
|---|---|
| CPE Name | cpe:/a:xmlsoft:libxml2:2.6.6 |
| Detail | |||
|---|---|---|---|
| Vendor | Xmlsoft | First view | 2005-03-01 |
| Product | libxml2 | Last view | 2013-04-25 |
| Version | 2.6.6 | Type | Application |
| Edition | |||
| Language | |||
| Update | |||
| CPE Product | cpe:/a:xmlsoft:libxml2 | ||
Activity : Yearly
Related : CVE
| Date | Alert | Access Vector | Access Complexity | Authentification | ||
|---|---|---|---|---|---|---|
| 4.3 | 2013-04-25 | CVE-2013-0338 | Network | Medium | None Requ... | |
| 5 | 2012-12-21 | CVE-2012-0841 | Network | Low | None Requ... | |
| 6.8 | 2012-11-27 | CVE-2012-5134 | Network | Medium | None Requ... | |
| 9.3 | 2011-09-02 | CVE-2011-1944 | Network | Medium | None Requ... | |
| 4.3 | 2010-11-16 | CVE-2010-4008 | Network | Medium | None Requ... | |
| Date | Alert | Access Vector | Access Complexity | Authentification | ||
|---|---|---|---|---|---|---|
| 10 | 2008-09-12 | CVE-2008-3529 | Network | Low | None Requ... | |
| 10 | 2005-03-01 | CVE-2004-0989 | Network | Low | None Requ... |
CWE : Common Weakness Enumeration
| % | id | Name |
|---|---|---|
| 66% (4) | CWE-119 | Failure to Constrain Operations within the Bounds of a Memory Buffer |
| 16% (1) | CWE-399 | Resource Management Errors |
| 16% (1) | CWE-189 | Numeric Errors |
CAPEC : Common Attack Pattern Enumeration & Classificatio
| id | Name |
|---|---|
| CAPEC-47 | Buffer Overflow via Parameter Expansion |
Oval Markup Language : Definitions
| OvalID | Name |
|---|---|
| oval:org.mitre.oval:def:1173 | Multiple Buffer Overflows in libXML2 |
| oval:org.mitre.oval:def:10505 | Multiple buffer overflows in libXML 2.6.12 and 2.6.13 (libxml2), and possibly... |
| oval:org.mitre.oval:def:6103 | Libxml2 Heap Overflow in xmlParseAttValueComplex() Lets Remote Users Execute ... |
| oval:org.mitre.oval:def:11760 | Heap-based buffer overflow in the xmlParseAttValueComplex function in parser.... |
| oval:org.mitre.oval:def:12148 | Vulnerability in libxml2 in Google Chrome before 7.0.517.44 |
Open Source Vulnerability Database (OSVDB)
| id | Description |
|---|---|
| 73248 | libxml2 xpath.c Xpath Nodeset Processing Overflow |
| 69205 | libxml2 Crafted XML File XPath Axis Traversal DoS |
| 48158 | libxml2 parser.c xmlParseAttValueComplex Function XML Entity Name Handling DoS |
| 11324 | libxml2 Proxy FTP URL Processing Overflow |
| 11180 | libxml2 DNS Reply Overflows |
| id | Description |
|---|---|
| 11179 | libxml2 FTP URL Processing Overflow |
Milw0rm Exploits
| id | Description |
|---|---|
| 2009-05-26 | Safari RSS feed:// Buffer Overflow via libxml2 Exploit PoC |
ExploitDB Exploits
| id | Description |
|---|---|
| 8798 | Safari RSS feed:// Buffer Overflow via libxml2 Exploit PoC |
