CVE-2012-2807

medium

Details

Source: MITRE

Published: 2012-06-27

Updated: 2014-01-28

Type: CWE-189

Risk Information

CVSS v2

Base Score: 6.8

Vector: AV:N/AC:M/Au:N/C:P/I:P/A:P

Impact Score: 6.4

Exploitability Score: 8.6

Severity: MEDIUM

Vulnerable Software

Configuration 1

AND

OR

cpe:2.3:a:google:chrome:20.0.1132.0:*:*:*:*:*:*:*

cpe:2.3:a:google:chrome:20.0.1132.1:*:*:*:*:*:*:*

cpe:2.3:a:google:chrome:20.0.1132.2:*:*:*:*:*:*:*

cpe:2.3:a:google:chrome:20.0.1132.3:*:*:*:*:*:*:*

cpe:2.3:a:google:chrome:20.0.1132.4:*:*:*:*:*:*:*

cpe:2.3:a:google:chrome:20.0.1132.5:*:*:*:*:*:*:*

cpe:2.3:a:google:chrome:20.0.1132.6:*:*:*:*:*:*:*

cpe:2.3:a:google:chrome:20.0.1132.7:*:*:*:*:*:*:*

cpe:2.3:a:google:chrome:20.0.1132.8:*:*:*:*:*:*:*

cpe:2.3:a:google:chrome:20.0.1132.9:*:*:*:*:*:*:*

cpe:2.3:a:google:chrome:20.0.1132.10:*:*:*:*:*:*:*

cpe:2.3:a:google:chrome:20.0.1132.11:*:*:*:*:*:*:*

cpe:2.3:a:google:chrome:20.0.1132.12:*:*:*:*:*:*:*

cpe:2.3:a:google:chrome:20.0.1132.13:*:*:*:*:*:*:*

cpe:2.3:a:google:chrome:20.0.1132.14:*:*:*:*:*:*:*

cpe:2.3:a:google:chrome:20.0.1132.15:*:*:*:*:*:*:*

cpe:2.3:a:google:chrome:20.0.1132.16:*:*:*:*:*:*:*

cpe:2.3:a:google:chrome:20.0.1132.17:*:*:*:*:*:*:*

cpe:2.3:a:google:chrome:20.0.1132.18:*:*:*:*:*:*:*

cpe:2.3:a:google:chrome:20.0.1132.19:*:*:*:*:*:*:*

cpe:2.3:a:google:chrome:20.0.1132.20:*:*:*:*:*:*:*

cpe:2.3:a:google:chrome:20.0.1132.21:*:*:*:*:*:*:*

cpe:2.3:a:google:chrome:20.0.1132.22:*:*:*:*:*:*:*

cpe:2.3:a:google:chrome:20.0.1132.23:*:*:*:*:*:*:*

cpe:2.3:a:google:chrome:20.0.1132.24:*:*:*:*:*:*:*

cpe:2.3:a:google:chrome:20.0.1132.25:*:*:*:*:*:*:*

cpe:2.3:a:google:chrome:20.0.1132.26:*:*:*:*:*:*:*

cpe:2.3:a:google:chrome:20.0.1132.27:*:*:*:*:*:*:*

cpe:2.3:a:google:chrome:20.0.1132.28:*:*:*:*:*:*:*

cpe:2.3:a:google:chrome:20.0.1132.29:*:*:*:*:*:*:*

cpe:2.3:a:google:chrome:20.0.1132.30:*:*:*:*:*:*:*

cpe:2.3:a:google:chrome:20.0.1132.31:*:*:*:*:*:*:*

cpe:2.3:a:google:chrome:20.0.1132.32:*:*:*:*:*:*:*

cpe:2.3:a:google:chrome:20.0.1132.33:*:*:*:*:*:*:*

cpe:2.3:a:google:chrome:20.0.1132.34:*:*:*:*:*:*:*

cpe:2.3:a:google:chrome:20.0.1132.35:*:*:*:*:*:*:*

cpe:2.3:a:google:chrome:20.0.1132.36:*:*:*:*:*:*:*

cpe:2.3:a:google:chrome:20.0.1132.37:*:*:*:*:*:*:*

cpe:2.3:a:google:chrome:20.0.1132.38:*:*:*:*:*:*:*

cpe:2.3:a:google:chrome:20.0.1132.39:*:*:*:*:*:*:*

cpe:2.3:a:google:chrome:20.0.1132.40:*:*:*:*:*:*:*

cpe:2.3:a:google:chrome:20.0.1132.41:*:*:*:*:*:*:*

cpe:2.3:a:google:chrome:*:*:*:*:*:*:*:*

OR

cpe:2.3:o:linux:linux_kernel:*:*:64-bit:*:*:*:*:*

Configuration 2

OR

cpe:2.3:o:apple:iphone_os:1.0.0:*:*:*:*:*:*:*

cpe:2.3:o:apple:iphone_os:1.0.1:*:*:*:*:*:*:*

cpe:2.3:o:apple:iphone_os:1.0.2:*:*:*:*:*:*:*

cpe:2.3:o:apple:iphone_os:1.1.0:*:*:*:*:*:*:*

cpe:2.3:o:apple:iphone_os:1.1.1:*:*:*:*:*:*:*

cpe:2.3:o:apple:iphone_os:1.1.2:*:*:*:*:*:*:*

cpe:2.3:o:apple:iphone_os:1.1.3:*:*:*:*:*:*:*

cpe:2.3:o:apple:iphone_os:1.1.4:*:*:*:*:*:*:*

cpe:2.3:o:apple:iphone_os:1.1.5:*:*:*:*:*:*:*

cpe:2.3:o:apple:iphone_os:2.0:*:*:*:*:*:*:*

cpe:2.3:o:apple:iphone_os:2.0.0:*:*:*:*:*:*:*

cpe:2.3:o:apple:iphone_os:2.0.1:*:*:*:*:*:*:*

cpe:2.3:o:apple:iphone_os:2.0.2:*:*:*:*:*:*:*

cpe:2.3:o:apple:iphone_os:2.1:*:*:*:*:*:*:*

cpe:2.3:o:apple:iphone_os:2.1.1:*:*:*:*:*:*:*

cpe:2.3:o:apple:iphone_os:2.2:*:*:*:*:*:*:*

cpe:2.3:o:apple:iphone_os:2.2.1:*:*:*:*:*:*:*

cpe:2.3:o:apple:iphone_os:3.0:*:*:*:*:*:*:*

cpe:2.3:o:apple:iphone_os:3.0.1:*:*:*:*:*:*:*

cpe:2.3:o:apple:iphone_os:3.1:*:*:*:*:*:*:*

cpe:2.3:o:apple:iphone_os:3.1.2:*:*:*:*:*:*:*

cpe:2.3:o:apple:iphone_os:3.1.3:*:*:*:*:*:*:*

cpe:2.3:o:apple:iphone_os:3.2:*:*:*:*:*:*:*

cpe:2.3:o:apple:iphone_os:3.2.1:*:*:*:*:*:*:*

cpe:2.3:o:apple:iphone_os:3.2.2:*:*:*:*:*:*:*

cpe:2.3:o:apple:iphone_os:4.0:*:*:*:*:*:*:*

cpe:2.3:o:apple:iphone_os:4.0.1:*:*:*:*:*:*:*

cpe:2.3:o:apple:iphone_os:4.0.2:*:*:*:*:*:*:*

cpe:2.3:o:apple:iphone_os:4.1:*:*:*:*:*:*:*

cpe:2.3:o:apple:iphone_os:4.2.1:*:*:*:*:*:*:*

cpe:2.3:o:apple:iphone_os:4.2.5:*:*:*:*:*:*:*

cpe:2.3:o:apple:iphone_os:4.2.8:*:*:*:*:*:*:*

cpe:2.3:o:apple:iphone_os:4.3.0:*:*:*:*:*:*:*

cpe:2.3:o:apple:iphone_os:4.3.1:*:*:*:*:*:*:*

cpe:2.3:o:apple:iphone_os:4.3.2:*:*:*:*:*:*:*

cpe:2.3:o:apple:iphone_os:4.3.3:*:*:*:*:*:*:*

cpe:2.3:o:apple:iphone_os:4.3.5:*:*:*:*:*:*:*

cpe:2.3:o:apple:iphone_os:5.0:*:*:*:*:*:*:*

cpe:2.3:o:apple:iphone_os:5.0.1:*:*:*:*:*:*:*

cpe:2.3:o:apple:iphone_os:5.1:*:*:*:*:*:*:*

cpe:2.3:o:apple:iphone_os:5.1.1:*:*:*:*:*:*:*

cpe:2.3:o:apple:iphone_os:6.0:*:*:*:*:*:*:*

cpe:2.3:o:apple:iphone_os:6.0.1:*:*:*:*:*:*:*

cpe:2.3:o:apple:iphone_os:6.0.2:*:*:*:*:*:*:*

cpe:2.3:o:apple:iphone_os:6.1:*:*:*:*:*:*:*

cpe:2.3:o:apple:iphone_os:6.1.2:*:*:*:*:*:*:*

cpe:2.3:o:apple:iphone_os:6.1.3:*:*:*:*:*:*:*

cpe:2.3:o:apple:iphone_os:*:*:*:*:*:*:*:* versions up to 6.1.4 (inclusive)

Tenable Plugins

View all (32 total)

IDNameProductFamilySeverity
125103EulerOS Virtualization 3.0.1.0 : libxml2 (EulerOS-SA-2019-1559)NessusHuawei Local Security Checks
high
89661VMware ESX / ESXi Authentication Service and Third-Party Libraries Multiple Vulnerabilities (VMSA-2013-0001) (remote check)NessusMisc.
critical
83599SUSE SLES10 Security Update : libxml2 (SUSE-SU-2013:1627-1)NessusSuSE Local Security Checks
high
80693Oracle Solaris Third-Party Patch Update : libxslt (cve_2012_2807_numeric_errors)NessusSolaris Local Security Checks
medium
74708openSUSE Security Update : libxml2 (openSUSE-SU-2012:0975-1)NessusSuSE Local Security Checks
medium
74660openSUSE Security Update : chromium / v8 (openSUSE-SU-2012:0813-1)NessusSuSE Local Security Checks
high
72105Apple iTunes < 11.1.4 Multiple Vulnerabilities (uncredentialed check)NessusPeer-To-Peer File Sharing
high
72104Apple iTunes < 11.1.4 Multiple Vulnerabilities (credentialed check)NessusWindows
high
70886ESXi 5.1 < Build 1063671 Multiple Vulnerabilities (remote check)NessusMisc.
medium
70877ESXi 5.0 < Build 1022489 Multiple Vulnerabilities (remote check)NessusMisc.
high
70589Apple iTunes < 11.1.2 Multiple Vulnerabilities (uncredentialed check)NessusPeer-To-Peer File Sharing
high
70588Apple iTunes < 11.1.2 Multiple Vulnerabilities (credentialed check)NessusWindows
high
70257Apple TV < 6.0 Multiple VulnerabilitiesNessusMisc.
high
69984Apple iOS < 7 Multiple VulnerabilitiesNessusMobile Devices
high
69624Amazon Linux AMI : libxml2 (ALAS-2012-134)NessusAmazon Linux Local Security Checks
medium
68629Oracle Linux 5 / 6 : libxml2 (ELSA-2012-1288)NessusOracle Linux Local Security Checks
medium
66070Mandriva Linux Security Advisory : libxml2 (MDVSA-2013:056)NessusMandriva Local Security Checks
medium
64642VMSA-2013-0001 : VMware vSphere security updates for the authentication service and third-party librariesNessusVMware ESX Local Security Checks
critical
8095iTunes for Windows < 11.1.4 Multiple VulnerabilitiesNessus Network MonitorWeb Clients
high
64205SuSE 11.1 Security Update : libxml2 (SAT Patch Number 6571)NessusSuSE Local Security Checks
medium
62366Ubuntu 8.04 LTS / 10.04 LTS / 11.04 / 11.10 / 12.04 LTS : libxml2 vulnerability (USN-1587-1)NessusUbuntu Local Security Checks
medium
62324Fedora 16 : libxml2-2.7.8-8.fc16 (2012-13824)NessusFedora Local Security Checks
high
62323Fedora 17 : libxml2-2.7.8-9.fc17 (2012-13820)NessusFedora Local Security Checks
high
62206CentOS 5 / 6 : libxml2 (CESA-2012:1288)NessusCentOS Local Security Checks
medium
62197Scientific Linux Security Update : libxml2 on SL5.x, SL6.x i386/x86_64 (20120918)NessusScientific Linux Local Security Checks
medium
62195RHEL 5 / 6 : libxml2 (RHSA-2012:1288)NessusRed Hat Local Security Checks
medium
62003SuSE 10 Security Update : libxml2 (ZYPP Patch Number 8235)NessusSuSE Local Security Checks
medium
61975Mandriva Linux Security Advisory : libxml2 (MDVSA-2012:126)NessusMandriva Local Security Checks
medium
61415Debian DSA-2521-1 : libxml2 - integer overflowsNessusDebian Local Security Checks
medium
800967Google Chrome < 20.0.1132.43 Multiple VulnerabilitiesLog Correlation EngineWeb Clients
high
6508Google Chrome < 20.0.1132.43 Multiple VulnerabilitiesNessus Network MonitorWeb Clients
high
8013Apple iOS < 7.0 Multiple VulnerabilitiesNessus Network MonitorMobile Devices
critical