// For flags

CVE-2004-0989

Libxml2 - Multiple Remote Stack Buffer Overflow Vulnerabilities

Severity Score

9.8
*CVSS v3

Exploit Likelihood

*EPSS

Affected Versions

*CPE

Public Exploits

2
*Multiple Sources

Exploited in Wild

-
*KEV

Decision

-
*SSVC
Descriptions

Multiple buffer overflows in libXML 2.6.12 and 2.6.13 (libxml2), and possibly other versions, may allow remote attackers to execute arbitrary code via (1) a long FTP URL that is not properly handled by the xmlNanoFTPScanURL function, (2) a long proxy URL containing FTP data that is not properly handled by the xmlNanoFTPScanProxy function, and other overflows related to manipulation of DNS length values, including (3) xmlNanoFTPConnect, (4) xmlNanoHTTPConnectHost, and (5) xmlNanoHTTPConnectHost.

*Credits: N/A
CVSS Scores
Attack Vector
Network
Attack Complexity
Low
Privileges Required
None
User Interaction
None
Scope
Unchanged
Confidentiality
High
Integrity
High
Availability
High
Attack Vector
Network
Attack Complexity
Low
Authentication
None
Confidentiality
Complete
Integrity
Complete
Availability
Complete
* Common Vulnerability Scoring System
SSVC
  • Decision:-
Exploitation
-
Automatable
-
Tech. Impact
-
* Organization's Worst-case Scenario
Timeline
  • 2004-10-26 First Exploit
  • 2004-10-27 CVE Reserved
  • 2004-10-28 CVE Published
  • 2024-08-08 CVE Updated
  • 2024-12-17 EPSS Updated
  • ---------- Exploited in Wild
  • ---------- KEV Due Date
CWE
CAPEC
References (25)
URL Tag Source
http://marc.info/?l=bugtraq&m=109880813013482&w=2 Mailing List
http://secunia.com/advisories/13000 Third Party Advisory
http://securitytracker.com/id?1011941 Vdb Entry
http://www.ciac.org/ciac/bulletins/p-029.shtml Government Resource
http://www.osvdb.org/11179 Vdb Entry
http://www.osvdb.org/11180 Vdb Entry
http://www.osvdb.org/11324 Vdb Entry
https://exchange.xforce.ibmcloud.com/vulnerabilities/17870 Vdb Entry
https://exchange.xforce.ibmcloud.com/vulnerabilities/17872 Vdb Entry
https://exchange.xforce.ibmcloud.com/vulnerabilities/17875 Vdb Entry
https://exchange.xforce.ibmcloud.com/vulnerabilities/17876 Vdb Entry
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10505 Signature
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A1173 Signature
URL Date SRC
https://www.exploit-db.com/exploits/24704 2004-10-26
http://www.securityfocus.com/bid/11526 2024-08-08
URL Date SRC
URL Date SRC
http://distro.conectiva.com.br/atualizacoes/?id=a&anuncio=000890 2017-10-11
http://lists.apple.com/archives/security-announce/2005/Jan/msg00001.html 2017-10-11
http://www.debian.org/security/2004/dsa-582 2017-10-11
http://www.gentoo.org/security/en/glsa/glsa-200411-05.xml 2017-10-11
http://www.novell.com/linux/security/advisories/2005_01_sr.html 2017-10-11
http://www.redhat.com/support/errata/RHSA-2004-615.html 2017-10-11
http://www.redhat.com/support/errata/RHSA-2004-650.html 2017-10-11
https://www.ubuntu.com/usn/usn-89-1 2017-10-11
https://access.redhat.com/security/cve/CVE-2004-0989 2004-12-16
https://bugzilla.redhat.com/show_bug.cgi?id=430645 2004-12-16
Affected Vendors, Products, and Versions
Vendor Product Version Other Status
Vendor Product Version Other Status <-- --> Vendor Product Version Other Status
Xmlsoft
Search vendor "Xmlsoft"
 Libxml
Search vendor "Xmlsoft" for product "Libxml"
 1.8.17
Search vendor "Xmlsoft" for product "Libxml" and version "1.8.17"
-
Affected
Xmlsoft
Search vendor "Xmlsoft"
 Libxml2
Search vendor "Xmlsoft" for product "Libxml2"
 2.5.11
Search vendor "Xmlsoft" for product "Libxml2" and version "2.5.11"
-
Affected
Xmlsoft
Search vendor "Xmlsoft"
 Libxml2
Search vendor "Xmlsoft" for product "Libxml2"
 2.6.6
Search vendor "Xmlsoft" for product "Libxml2" and version "2.6.6"
-
Affected
Xmlsoft
Search vendor "Xmlsoft"
 Libxml2
Search vendor "Xmlsoft" for product "Libxml2"
 2.6.7
Search vendor "Xmlsoft" for product "Libxml2" and version "2.6.7"
-
Affected
Xmlsoft
Search vendor "Xmlsoft"
 Libxml2
Search vendor "Xmlsoft" for product "Libxml2"
 2.6.8
Search vendor "Xmlsoft" for product "Libxml2" and version "2.6.8"
-
Affected
Xmlsoft
Search vendor "Xmlsoft"
 Libxml2
Search vendor "Xmlsoft" for product "Libxml2"
 2.6.9
Search vendor "Xmlsoft" for product "Libxml2" and version "2.6.9"
-
Affected
Xmlsoft
Search vendor "Xmlsoft"
 Libxml2
Search vendor "Xmlsoft" for product "Libxml2"
 2.6.11
Search vendor "Xmlsoft" for product "Libxml2" and version "2.6.11"
-
Affected
Xmlsoft
Search vendor "Xmlsoft"
 Libxml2
Search vendor "Xmlsoft" for product "Libxml2"
 2.6.12
Search vendor "Xmlsoft" for product "Libxml2" and version "2.6.12"
-
Affected
Xmlsoft
Search vendor "Xmlsoft"
 Libxml2
Search vendor "Xmlsoft" for product "Libxml2"
 2.6.13
Search vendor "Xmlsoft" for product "Libxml2" and version "2.6.13"
-
Affected
Xmlsoft
Search vendor "Xmlsoft"
 Libxml2
Search vendor "Xmlsoft" for product "Libxml2"
 2.6.14
Search vendor "Xmlsoft" for product "Libxml2" and version "2.6.14"
-
Affected
Xmlstarlet
Search vendor "Xmlstarlet"
 Command Line Xml Toolkit
Search vendor "Xmlstarlet" for product "Command Line Xml Toolkit"
 0.9.1
Search vendor "Xmlstarlet" for product "Command Line Xml Toolkit" and version "0.9.1"
-
Affected
Redhat
Search vendor "Redhat"
 Fedora Core
Search vendor "Redhat" for product "Fedora Core"
 core_2.0
Search vendor "Redhat" for product "Fedora Core" and version "core_2.0"
-
Affected
Trustix
Search vendor "Trustix"
 Secure Linux
Search vendor "Trustix" for product "Secure Linux"
 2.0
Search vendor "Trustix" for product "Secure Linux" and version "2.0"
-
Affected
Trustix
Search vendor "Trustix"
 Secure Linux
Search vendor "Trustix" for product "Secure Linux"
 2.1
Search vendor "Trustix" for product "Secure Linux" and version "2.1"
-
Affected
Ubuntu
Search vendor "Ubuntu"
 Ubuntu Linux
Search vendor "Ubuntu" for product "Ubuntu Linux"
 4.1
Search vendor "Ubuntu" for product "Ubuntu Linux" and version "4.1"
ia64
Affected
Ubuntu
Search vendor "Ubuntu"
 Ubuntu Linux
Search vendor "Ubuntu" for product "Ubuntu Linux"
 4.1
Search vendor "Ubuntu" for product "Ubuntu Linux" and version "4.1"
ppc
Affected