This CPE summary could be partial or incomplete. Please contact us for a detailed listing.

Summary

Summuary
CPE Namecpe:/a:xmlsoft:libxml2:2.6.6
Detail
VendorXmlsoftFirst view 2005-03-01
Productlibxml2Last view2016-06-09
Version2.6.6TypeApplication
Edition 
Language 
Update 
 
CPE Productcpe:/a:xmlsoft:libxml2

Activity : Overall

Related : CVE

This CPE have more than 25 Relations. If you want to see a complete summary for this CPE, please contact us.
 DateAlertAccess VectorAccess ComplexityAuthentication
5.82016-06-09CVE-2016-4449NetworkMediumNone Requ...
102016-06-09CVE-2016-4448NetworkLowNone Requ...
52016-06-09CVE-2016-4447NetworkLowNone Requ...
52016-05-17CVE-2016-3627NetworkLowNone Requ...
52016-05-16CVE-2015-6838NetworkLowNone Requ...
Hide | Show 21 More...
 DateAlertAccess VectorAccess ComplexityAuthentication
52016-05-16CVE-2015-6837NetworkLowNone Requ...
52015-12-15CVE-2015-8317NetworkLowNone Requ...
5.82015-12-15CVE-2015-8242NetworkMediumNone Requ...
6.42015-12-15CVE-2015-8241NetworkLowNone Requ...
52015-12-15CVE-2015-7500NetworkLowNone Requ...
52015-12-15CVE-2015-7499NetworkLowNone Requ...
52015-12-15CVE-2015-7498NetworkLowNone Requ...
52015-12-15CVE-2015-7497NetworkLowNone Requ...
7.12015-12-15CVE-2015-5312NetworkMediumNone Requ...
52014-11-04CVE-2014-3660NetworkLowNone Requ...
6.82014-01-21CVE-2013-0339NetworkMediumNone Requ...
52013-07-10CVE-2013-2877NetworkLowNone Requ...
4.32013-04-25CVE-2013-0338NetworkMediumNone Requ...
52012-12-21CVE-2012-0841NetworkLowNone Requ...
6.82012-11-27CVE-2012-5134NetworkMediumNone Requ...
6.82012-08-31CVE-2012-2871NetworkMediumNone Requ...
9.32011-09-02CVE-2011-1944NetworkMediumNone Requ...
4.32010-11-16CVE-2010-4008NetworkMediumNone Requ...
102008-09-12CVE-2008-3529NetworkLowNone Requ...

CWE : Common Weakness Enumeration

%idName
65% (13)CWE-119Failure to Constrain Operations within the Bounds of a Memory Buffer
15% (3)CWE-399Resource Management Errors
10% (2)CWE-20Improper Input Validation
5% (1)CWE-264Permissions, Privileges, and Access Controls
5% (1)CWE-189Numeric Errors

CAPEC : Common Attack Pattern Enumeration & Classification

idName
CAPEC-47Buffer Overflow via Parameter Expansion

Oval Markup Language : Definitions

This CPE have more than 25 Relations. If you want to see a complete summary for this CPE, please contact us.
OvalIDName
oval:org.mitre.oval:def:13253USN-1016-1 -- libxml2 vulnerability
oval:org.mitre.oval:def:12709DSA-2128-1 libxml2 -- invalid memory access
oval:org.mitre.oval:def:12148Vulnerability in libxml2 in Google Chrome before 7.0.517.44
oval:org.mitre.oval:def:20663VMware vSphere security updates for the authentication service and third part...
oval:org.mitre.oval:def:26564Allows remote attackers to cause a denial of service or possibly have unknown...
Hide | Show 20 More...
idName
oval:org.mitre.oval:def:26857DEPRECATED: ELSA-2012-1265 -- libxslt security update (important)
oval:org.mitre.oval:def:20018DSA-2652-1 libxml2 - external entity expansion
oval:org.mitre.oval:def:25923SUSE-SU-2013:0744-1 -- Security update for libxml2
oval:org.mitre.oval:def:25816SUSE-SU-2013:0743-1 -- Security update for libxml2
oval:org.mitre.oval:def:25714SUSE-SU-2013:1625-1 -- Security update for libxml2
oval:org.mitre.oval:def:1173Multiple Buffer Overflows in libXML2
oval:org.mitre.oval:def:10505Multiple buffer overflows in libXML 2.6.12 and 2.6.13 (libxml2), and possibly...
oval:org.mitre.oval:def:20894RHSA-2013:0581: libxml2 security update (Moderate)
oval:org.mitre.oval:def:20491VMware vSphere, ESX and ESXi updates to third party libraries
oval:org.mitre.oval:def:18166USN-1782-1 -- libxml2 vulnerability
oval:org.mitre.oval:def:23965DEPRECATED: ELSA-2013:0581: libxml2 security update (Moderate)
oval:org.mitre.oval:def:23449ELSA-2013:0581: libxml2 security update (Moderate)
oval:org.mitre.oval:def:27000DEPRECATED: ELSA-2013-0581 -- libxml2 security update (moderate)
oval:org.mitre.oval:def:21665RHSA-2012:1512: libxml2 security update (Important)
oval:org.mitre.oval:def:20771RHSA-2013:0217: mingw32-libxml2 security update (Important)
oval:org.mitre.oval:def:20411VMware ESXi and ESX security update for third party library
oval:org.mitre.oval:def:19412DSA-2580-1 libxml2 - buffer overflow
oval:org.mitre.oval:def:17901USN-1656-1 -- libxml2 vulnerability
oval:org.mitre.oval:def:23922ELSA-2012:1512: libxml2 security update (Important)
oval:org.mitre.oval:def:23888ELSA-2013:0217: mingw32-libxml2 security update (Important)

Open Source Vulnerability Database (OSVDB)

idDescription
73248libxml2 xpath.c Xpath Nodeset Processing Overflow
69205libxml2 Crafted XML File XPath Axis Traversal DoS
48158libxml2 parser.c xmlParseAttValueComplex Function XML Entity Name Handling DoS
47636libxml2 Crafted XML File Handling Recursion Limit DoS
11324libxml2 Proxy FTP URL Processing Overflow
Hide | Show 2 More...
idDescription
11180libxml2 DNS Reply Overflows
11179libxml2 FTP URL Processing Overflow

Milw0rm Exploits

idDescription
2009-05-26Safari RSS feed:// Buffer Overflow via libxml2 Exploit PoC

ExploitDB Exploits

idDescription
8798Safari RSS feed:// Buffer Overflow via libxml2 Exploit PoC

OpenVAS Exploits

This CPE have more than 25 Relations. If you want to see a complete summary for this CPE, please contact us.
idDescription
2012-12-14Name : SuSE Update for Chromium openSUSE-SU-2012:1637-1 (Chromium)
File : nvt/gb_suse_2012_1637_1.nasl
2012-12-13Name : SuSE Update for chromium openSUSE-SU-2012:1215-1 (chromium)
File : nvt/gb_suse_2012_1215_1.nasl
2012-12-06Name : Ubuntu Update for libxml2 USN-1656-1
File : nvt/gb_ubuntu_USN_1656_1.nasl
2012-12-04Name : RedHat Update for libxml2 RHSA-2012:1512-01
File : nvt/gb_RHSA-2012_1512-01_libxml2.nasl
2012-12-04Name : Mandriva Update for libxml2 MDVSA-2012:176 (libxml2)
File : nvt/gb_mandriva_MDVSA_2012_176.nasl
Hide | Show 20 More...
idDescription
2012-12-04Name : Debian Security Advisory DSA 2580-1 (libxml2)
File : nvt/deb_2580_1.nasl
2012-12-04Name : FreeBSD Ports: chromium
File : nvt/freebsd_chromium24.nasl
2012-12-04Name : CentOS Update for libxml2 CESA-2012:1512 centos5
File : nvt/gb_CESA-2012_1512_libxml2_centos5.nasl
2012-12-04Name : CentOS Update for libxml2 CESA-2012:1512 centos6
File : nvt/gb_CESA-2012_1512_libxml2_centos6.nasl
2012-12-04Name : Google Chrome Multiple Vulnerabilities-01 Dec2012 (Linux)
File : nvt/gb_google_chrome_mult_vuln01_dec12_lin.nasl
2012-12-04Name : Google Chrome Multiple Vulnerabilities-01 Dec2012 (Mac OS X)
File : nvt/gb_google_chrome_mult_vuln01_dec12_macosx.nasl
2012-12-04Name : Google Chrome Multiple Vulnerabilities-01 Dec2012 (Windows)
File : nvt/gb_google_chrome_mult_vuln01_dec12_win.nasl
2012-10-13Name : Debian Security Advisory DSA 2555-1 (libxslt)
File : nvt/deb_2555_1.nasl
2012-10-12Name : Mandriva Update for libxslt MDVSA-2012:164 (libxslt)
File : nvt/gb_mandriva_MDVSA_2012_164.nasl
2012-10-05Name : Ubuntu Update for libxslt USN-1595-1
File : nvt/gb_ubuntu_USN_1595_1.nasl
2012-10-03Name : Fedora Update for libxml2 FEDORA-2012-13824
File : nvt/gb_fedora_2012_13824_libxml2_fc16.nasl
2012-10-03Name : Fedora Update for libxslt FEDORA-2012-14048
File : nvt/gb_fedora_2012_14048_libxslt_fc16.nasl
2012-09-27Name : Fedora Update for libxml2 FEDORA-2012-13820
File : nvt/gb_fedora_2012_13820_libxml2_fc17.nasl
2012-09-27Name : Fedora Update for libxslt FEDORA-2012-14083
File : nvt/gb_fedora_2012_14083_libxslt_fc17.nasl
2012-09-17Name : RedHat Update for libxslt RHSA-2012:1265-01
File : nvt/gb_RHSA-2012_1265-01_libxslt.nasl
2012-09-17Name : CentOS Update for libxslt CESA-2012:1265 centos5
File : nvt/gb_CESA-2012_1265_libxslt_centos5.nasl
2012-09-17Name : CentOS Update for libxslt CESA-2012:1265 centos6
File : nvt/gb_CESA-2012_1265_libxslt_centos6.nasl
2012-09-03Name : Google Chrome Multiple Vulnerabilities - Sep12 (Windows)
File : nvt/gb_google_chrome_mult_vuln_sep12_win.nasl
2012-09-03Name : Google Chrome Multiple Vulnerabilities - Sep12 (Linux)
File : nvt/gb_google_chrome_mult_vuln_sep12_lin.nasl
2012-09-03Name : Google Chrome Multiple Vulnerabilities - Sep12 (Mac OS X)
File : nvt/gb_google_chrome_mult_vuln_sep12_macosx.nasl

Information Assurance Vulnerability Management (IAVM)

idDescription
2015-B-0108Multiple Vulnerabilities in PHP
Severity : Category I - VMSKEY : V0061365
2015-A-0199Multiple Vulnerabilities in Apple Mac OS X
Severity : Category I - VMSKEY : V0061337
2015-B-0014Multiple Vulnerabilities in VMware ESXi 5.5
Severity : Category I - VMSKEY : V0058513
2015-B-0013Multiple Vulnerabilities in VMware ESXi 5.1
Severity : Category I - VMSKEY : V0058515
2014-B-0161Multiple Vulnerabilities in VMware ESXi 5.1
Severity : Category I - VMSKEY : V0057717
Hide | Show 5 More...
idDescription
2013-A-0031Multiple Security Vulnerabilities in VMware ESX 4.1 and ESXi 4.1
Severity : Category I - VMSKEY : V0036787
2012-A-0153Multiple Vulnerabilities in VMware ESX 4.0 and ESXi 4.0
Severity : Category I - VMSKEY : V0033884
2012-A-0148Multiple Vulnerabilities in VMware ESXi 4.1 and ESX 4.1
Severity : Category I - VMSKEY : V0033794
2012-A-0073Multiple Vulnerabilities in VMware ESXi 4.1 and ESX 4.1
Severity : Category I - VMSKEY : V0032171
2008-B-0078Multiple Vulnerabilities in VMware
Severity : Category I - VMSKEY : V0017874

Snort® IPS/IDS

DateDescription
2014-01-10libxml2 file processing long entity overflow attempt
RuleID : 15866 - Type : FILE-OTHER - Revision : 16

Nessus® Vulnerability Scanner

This CPE have more than 25 Relations. If you want to see a complete summary for this CPE, please contact us.
idDescription
2016-06-24Name : The remote CentOS host is missing one or more security updates.
File : centos_RHSA-2016-1292.nasl - Type : ACT_GATHER_INFO
2016-06-24Name : The remote Oracle Linux host is missing one or more security updates.
File : oraclelinux_ELSA-2016-1292.nasl - Type : ACT_GATHER_INFO
2016-06-24Name : The remote OracleVM host is missing one or more security updates.
File : oraclevm_OVMSA-2016-0087.nasl - Type : ACT_GATHER_INFO
2016-06-24Name : The remote Red Hat host is missing one or more security updates.
File : redhat-RHSA-2016-1292.nasl - Type : ACT_GATHER_INFO
2016-06-24Name : The remote Scientific Linux host is missing one or more security updates.
File : sl_20160623_libxml2_on_SL6_x.nasl - Type : ACT_GATHER_INFO
Hide | Show 20 More...
idDescription
2016-06-22Name : The remote OracleVM host is missing one or more security updates.
File : oraclevm_OVMSA-2016-0063.nasl - Type : ACT_GATHER_INFO
2016-06-20Name : The remote Gentoo host is missing one or more security-related patches.
File : gentoo_GLSA-201606-10.nasl - Type : ACT_GATHER_INFO
2016-06-17Name : The remote openSUSE host is missing a security update.
File : openSUSE-2016-733.nasl - Type : ACT_GATHER_INFO
2016-06-17Name : The remote openSUSE host is missing a security update.
File : openSUSE-2016-734.nasl - Type : ACT_GATHER_INFO
2016-06-17Name : The remote SUSE host is missing one or more security updates.
File : suse_SU-2016-1538-1.nasl - Type : ACT_GATHER_INFO
2016-06-07Name : The remote Ubuntu host is missing a security-related patch.
File : ubuntu_USN-2994-1.nasl - Type : ACT_GATHER_INFO
2016-06-06Name : The remote Debian host is missing a security update.
File : debian_DLA-503.nasl - Type : ACT_GATHER_INFO
2016-06-03Name : The remote Debian host is missing a security-related update.
File : debian_DSA-3593.nasl - Type : ACT_GATHER_INFO
2016-06-02Name : The remote device is missing a vendor-supplied security patch.
File : f5_bigip_SOL17377.nasl - Type : ACT_GATHER_INFO
2016-06-01Name : The remote openSUSE host is missing a security update.
File : openSUSE-2016-662.nasl - Type : ACT_GATHER_INFO
2016-05-31Name : The remote Slackware host is missing a security update.
File : Slackware_SSA_2016-148-01.nasl - Type : ACT_GATHER_INFO
2016-05-19Name : The remote AIX host is missing a vendor-supplied security patch.
File : aix_U866671.nasl - Type : ACT_GATHER_INFO
2016-05-19Name : The remote AIX host is missing a vendor-supplied security patch.
File : aix_U868931.nasl - Type : ACT_GATHER_INFO
2016-05-19Name : The remote AIX host is missing a vendor-supplied security patch.
File : aix_U870330.nasl - Type : ACT_GATHER_INFO
2016-05-16Name : The remote openSUSE host is missing a security update.
File : openSUSE-2016-583.nasl - Type : ACT_GATHER_INFO
2016-05-04Name : The remote SUSE host is missing one or more security updates.
File : suse_SU-2016-1204-1.nasl - Type : ACT_GATHER_INFO
2016-05-04Name : The remote SUSE host is missing one or more security updates.
File : suse_SU-2016-1205-1.nasl - Type : ACT_GATHER_INFO
2016-04-04Name : The remote device is affected by multiple vulnerabilities.
File : appletv_7_2_1.nasl - Type : ACT_GATHER_INFO
2016-04-01Name : The remote device is affected by multiple vulnerabilities.
File : appletv_9_2.nasl - Type : ACT_GATHER_INFO
2016-03-22Name : The remote Mac OS X host is affected by multiple vulnerabilities.
File : macosx_10_11_4.nasl - Type : ACT_GATHER_INFO