CVE-2004-0989

high
New! CVE Severity Now Using CVSS v3

The calculated severity for CVEs has been updated to use CVSS v3 by default. CVEs that do not have a CVSS v3 score will fall back CVSS v2 for calculating severity. Severity display preferences can be toggled in the settings dropdown.

Description

Multiple buffer overflows in libXML 2.6.12 and 2.6.13 (libxml2), and possibly other versions, may allow remote attackers to execute arbitrary code via (1) a long FTP URL that is not properly handled by the xmlNanoFTPScanURL function, (2) a long proxy URL containing FTP data that is not properly handled by the xmlNanoFTPScanProxy function, and other overflows related to manipulation of DNS length values, including (3) xmlNanoFTPConnect, (4) xmlNanoHTTPConnectHost, and (5) xmlNanoHTTPConnectHost.

References

http://distro.conectiva.com.br/atualizacoes/?id=a&anuncio=000890

http://lists.apple.com/archives/security-announce/2005/Jan/msg00001.html

http://marc.info/?l=bugtraq&m=109880813013482&w=2

http://secunia.com/advisories/13000

http://securitytracker.com/id?1011941

http://www.ciac.org/ciac/bulletins/p-029.shtml

http://www.debian.org/security/2004/dsa-582

http://www.gentoo.org/security/en/glsa/glsa-200411-05.xml

http://www.novell.com/linux/security/advisories/2005_01_sr.html

http://www.osvdb.org/11179

http://www.osvdb.org/11180

http://www.osvdb.org/11324

http://www.redhat.com/support/errata/RHSA-2004-615.html

http://www.redhat.com/support/errata/RHSA-2004-650.html

http://www.securityfocus.com/bid/11526

https://exchange.xforce.ibmcloud.com/vulnerabilities/17870

https://exchange.xforce.ibmcloud.com/vulnerabilities/17872

https://exchange.xforce.ibmcloud.com/vulnerabilities/17875

https://exchange.xforce.ibmcloud.com/vulnerabilities/17876

https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10505

https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A1173

https://www.ubuntu.com/usn/usn-89-1/

Details

Source: MITRE

Published: 2005-03-01

Updated: 2017-10-11

Risk Information

CVSS v2

Base Score: 10

Vector: AV:N/AC:L/Au:N/C:C/I:C/A:C

Impact Score: 10

Exploitability Score: 10

Severity: HIGH

Tenable Plugins

View all (15 total)

IDNameProductFamilySeverity
41341SuSE9 Security Update : libxml (YOU Patch Number 9579)NessusSuSE Local Security Checks
critical
40604Fedora 10 : libxml-1.8.17-24.fc10 (2009-8594)NessusFedora Local Security Checks
critical
40603Fedora 11 : libxml-1.8.17-24.fc11 (2009-8582)NessusFedora Local Security Checks
critical
38061FreeBSD : libxml -- remote buffer overflows (9ff4c91e-328c-11d9-a9e7-0001020eed82)NessusFreeBSD Local Security Checks
critical
21794CentOS 3 : libxml (CESA-2004:650)NessusCentOS Local Security Checks
critical
20714Ubuntu 4.10 : libxml vulnerabilities (USN-89-1)NessusUbuntu Local Security Checks
critical
2555Mac OS X Multiple Vulnerabilities (Security Update 2005-001)Nessus Network MonitorWeb Clients
critical
16251Mac OS X Multiple Vulnerabilities (Security Update 2005-001)NessusMacOS X Local Security Checks
high
15991RHEL 2.1 / 3 : libxml (RHSA-2004:650)NessusRed Hat Local Security Checks
critical
15805FreeBSD : libxml -- remote buffer overflows (98)NessusFreeBSD Local Security Checks
critical
15702RHEL 2.1 / 3 : libxml2 (RHSA-2004:615)NessusRed Hat Local Security Checks
critical
15680Debian DSA-582-1 : libxml - buffer overflowNessusDebian Local Security Checks
critical
15638Mandrake Linux Security Advisory : libxml/libxml2 (MDKSA-2004:127)NessusMandriva Local Security Checks
critical
15610GLSA-200411-05 : libxml2: Remotely exploitable buffer overflowNessusGentoo Local Security Checks
critical
800804Mac OS X Multiple Vulnerabilities (Security Update 2005-001)Log Correlation EngineOperating System Detection
high