Buffer Overflow in XMLSoft Libxml2 Affecting Multiple Modules
CVE-2004-0110

Currently unrated

Key Information:

Vendor

Xmlsoft

Status
Libxml2
Propack
Libxml
Vendor
CVE Published:
15 March 2004

What is CVE-2004-0110?

A buffer overflow vulnerability exists in the nanohttp and nanoftp modules of XMLSoft Libxml 2 versions 2.6.0 through 2.6.5, enabling remote attackers to execute arbitrary code by sending specially crafted long URLs. This flaw could allow an unauthorized user to gain control of the affected system, leading to potential data breaches and system compromises. It is critical for users to apply patches or updates to mitigate this risk.

References

https://oval.cisecurity.org/repository/search/definition/...
vdb-entrysignaturex_refsource_OVAL
https://oval.cisecurity.org/repository/search/definition/...
vdb-entrysignaturex_refsource_OVAL
http://marc.info/?l=bugtraq&m=107851606605420&w=2
mailing-listx_refsource_BUGTRAQ

EPSS Score

41% chance of being exploited in the next 30 days.

Timeline

  • Vulnerability published

  • Vulnerability Reserved

.