CVE-2004-0989

Libxml2 - Multiple Remote Stack Buffer Overflow Vulnerabilities

Severity Score

10.0

*CVSS v2

Exploit Likelihood

*EPSS

Affected Versions

*CPE

Public Exploits

*Multiple Sources

Exploited in Wild

*KEV

Decision

*SSVC

Descriptions

Multiple buffer overflows in libXML 2.6.12 and 2.6.13 (libxml2), and possibly other versions, may allow remote attackers to execute arbitrary code via (1) a long FTP URL that is not properly handled by the xmlNanoFTPScanURL function, (2) a long proxy URL containing FTP data that is not properly handled by the xmlNanoFTPScanProxy function, and other overflows related to manipulation of DNS length values, including (3) xmlNanoFTPConnect, (4) xmlNanoHTTPConnectHost, and (5) xmlNanoHTTPConnectHost.

*Credits: N/A

CVSS Scores

NISTv2 10.0

Attack Vector

Network

Attack Complexity

Low

Authentication

None

Confidentiality

Complete

Integrity

Complete

Availability

Complete

* Common Vulnerability Scoring System

SSVC

Decision:-

Exploitation

Automatable

Tech. Impact

* Organization's Worst-case Scenario

Timeline

2004-10-26 First Exploit
2004-10-27 CVE Reserved
2004-10-28 CVE Published
2023-10-05 EPSS Updated
2024-08-08 CVE Updated
---------- Exploited in Wild
---------- KEV Due Date

CWE

CAPEC

References (25)

URL	Tag	Source
http://marc.info/?l=bugtraq&m=109880813013482&w=2	Mailing List
http://secunia.com/advisories/13000	Third Party Advisory
http://securitytracker.com/id?1011941	Vdb Entry
http://www.ciac.org/ciac/bulletins/p-029.shtml	Government Resource
http://www.osvdb.org/11179	Vdb Entry
http://www.osvdb.org/11180	Vdb Entry
http://www.osvdb.org/11324	Vdb Entry
https://exchange.xforce.ibmcloud.com/vulnerabilities/17870	Vdb Entry
https://exchange.xforce.ibmcloud.com/vulnerabilities/17872	Vdb Entry
https://exchange.xforce.ibmcloud.com/vulnerabilities/17875	Vdb Entry
https://exchange.xforce.ibmcloud.com/vulnerabilities/17876	Vdb Entry
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10505	Signature
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A1173	Signature

URL	Date	SRC
https://www.exploit-db.com/exploits/24704	2004-10-26
http://www.securityfocus.com/bid/11526	2024-08-08

URL	Date	SRC

URL	Date	SRC
http://distro.conectiva.com.br/atualizacoes/?id=a&anuncio=000890	2017-10-11
http://lists.apple.com/archives/security-announce/2005/Jan/msg00001.html	2017-10-11
http://www.debian.org/security/2004/dsa-582	2017-10-11
http://www.gentoo.org/security/en/glsa/glsa-200411-05.xml	2017-10-11
http://www.novell.com/linux/security/advisories/2005_01_sr.html	2017-10-11
http://www.redhat.com/support/errata/RHSA-2004-615.html	2017-10-11
http://www.redhat.com/support/errata/RHSA-2004-650.html	2017-10-11
https://www.ubuntu.com/usn/usn-89-1	2017-10-11
https://access.redhat.com/security/cve/CVE-2004-0989	2004-12-16
https://bugzilla.redhat.com/show_bug.cgi?id=430645	2004-12-16

Affected Vendors, Products, and Versions

Vendor		Product				Version		Other		Status
Vendor	Product	Version	Other	Status	<-- -->	Vendor	Product	Version	Other	Status
Xmlsoft Search vendor "Xmlsoft"		Libxml Search vendor "Xmlsoft" for product "Libxml"				1.8.17 Search vendor "Xmlsoft" for product "Libxml" and version "1.8.17"		-		Affected
Xmlsoft Search vendor "Xmlsoft"		Libxml2 Search vendor "Xmlsoft" for product "Libxml2"				2.5.11 Search vendor "Xmlsoft" for product "Libxml2" and version "2.5.11"		-		Affected
Xmlsoft Search vendor "Xmlsoft"		Libxml2 Search vendor "Xmlsoft" for product "Libxml2"				2.6.6 Search vendor "Xmlsoft" for product "Libxml2" and version "2.6.6"		-		Affected
Xmlsoft Search vendor "Xmlsoft"		Libxml2 Search vendor "Xmlsoft" for product "Libxml2"				2.6.7 Search vendor "Xmlsoft" for product "Libxml2" and version "2.6.7"		-		Affected
Xmlsoft Search vendor "Xmlsoft"		Libxml2 Search vendor "Xmlsoft" for product "Libxml2"				2.6.8 Search vendor "Xmlsoft" for product "Libxml2" and version "2.6.8"		-		Affected
Xmlsoft Search vendor "Xmlsoft"		Libxml2 Search vendor "Xmlsoft" for product "Libxml2"				2.6.9 Search vendor "Xmlsoft" for product "Libxml2" and version "2.6.9"		-		Affected
Xmlsoft Search vendor "Xmlsoft"		Libxml2 Search vendor "Xmlsoft" for product "Libxml2"				2.6.11 Search vendor "Xmlsoft" for product "Libxml2" and version "2.6.11"		-		Affected
Xmlsoft Search vendor "Xmlsoft"		Libxml2 Search vendor "Xmlsoft" for product "Libxml2"				2.6.12 Search vendor "Xmlsoft" for product "Libxml2" and version "2.6.12"		-		Affected
Xmlsoft Search vendor "Xmlsoft"		Libxml2 Search vendor "Xmlsoft" for product "Libxml2"				2.6.13 Search vendor "Xmlsoft" for product "Libxml2" and version "2.6.13"		-		Affected
Xmlsoft Search vendor "Xmlsoft"		Libxml2 Search vendor "Xmlsoft" for product "Libxml2"				2.6.14 Search vendor "Xmlsoft" for product "Libxml2" and version "2.6.14"		-		Affected
Xmlstarlet Search vendor "Xmlstarlet"		Command Line Xml Toolkit Search vendor "Xmlstarlet" for product "Command Line Xml Toolkit"				0.9.1 Search vendor "Xmlstarlet" for product "Command Line Xml Toolkit" and version "0.9.1"		-		Affected
Redhat Search vendor "Redhat"		Fedora Core Search vendor "Redhat" for product "Fedora Core"				core_2.0 Search vendor "Redhat" for product "Fedora Core" and version "core_2.0"		-		Affected
Trustix Search vendor "Trustix"		Secure Linux Search vendor "Trustix" for product "Secure Linux"				2.0 Search vendor "Trustix" for product "Secure Linux" and version "2.0"		-		Affected
Trustix Search vendor "Trustix"		Secure Linux Search vendor "Trustix" for product "Secure Linux"				2.1 Search vendor "Trustix" for product "Secure Linux" and version "2.1"		-		Affected
Ubuntu Search vendor "Ubuntu"		Ubuntu Linux Search vendor "Ubuntu" for product "Ubuntu Linux"				4.1 Search vendor "Ubuntu" for product "Ubuntu Linux" and version "4.1"		ia64		Affected
Ubuntu Search vendor "Ubuntu"		Ubuntu Linux Search vendor "Ubuntu" for product "Ubuntu Linux"				4.1 Search vendor "Ubuntu" for product "Ubuntu Linux" and version "4.1"		ppc		Affected