JVN/CVE Demo: Cveinfos

CVE

Id: 46592
CVE No.: CVE-2010-4008
Status: Candidate
Description: libxml2 before 2.7.8, as used in Google Chrome before 7.0.517.44, Apple Safari 5.0.2 and earlier, and other products, reads from invalid memory locations during processing of malformed XPath expressions, which allows context-dependent attackers to cause a denial of service (application crash) via a crafted XML document.
Phase: Assigned (20101020)
Votes: None (candidate not yet proposed)
Comments

Actions

Related CVE References

Id	CVE Id	CVE No.	Reference	Actions
508757	46592	CVE-2010-4008	MLIST:[xml] 20101104 Release of libxml2-2.7.8	View
508758	46592	CVE-2010-4008	URL:http://mail.gnome.org/archives/xml/2010-November/msg00015.html	View
508759	46592	CVE-2010-4008	MISC:http://blog.bkis.com/en/libxml2-vulnerability-in-google-chrome-and-apple-safari/	View
508760	46592	CVE-2010-4008	CONFIRM:http://code.google.com/p/chromium/issues/detail?id=58731	View
508761	46592	CVE-2010-4008	CONFIRM:http://googlechromereleases.blogspot.com/2010/11/stable-channel-update.html	View
508762	46592	CVE-2010-4008	CONFIRM:http://support.apple.com/kb/HT4456	View
508763	46592	CVE-2010-4008	CONFIRM:http://www.openoffice.org/security/cves/CVE-2010-4008_CVE-2010-4494.html	View
508764	46592	CVE-2010-4008	CONFIRM:http://support.apple.com/kb/HT4554	View
508765	46592	CVE-2010-4008	CONFIRM:http://support.apple.com/kb/HT4566	View
508766	46592	CVE-2010-4008	CONFIRM:http://support.apple.com/kb/HT4581	View
508767	46592	CVE-2010-4008	APPLE:APPLE-SA-2010-11-22-1	View
508768	46592	CVE-2010-4008	URL:http://lists.apple.com/archives/security-announce/2010//Nov/msg00003.html	View
508769	46592	CVE-2010-4008	APPLE:APPLE-SA-2011-03-02-1	View
508770	46592	CVE-2010-4008	URL:http://lists.apple.com/archives/security-announce/2011/Mar/msg00000.html	View
508771	46592	CVE-2010-4008	APPLE:APPLE-SA-2011-03-09-2	View
508772	46592	CVE-2010-4008	URL:http://lists.apple.com/archives/security-announce/2011//Mar/msg00004.html	View
508773	46592	CVE-2010-4008	APPLE:APPLE-SA-2011-03-21-1	View
508774	46592	CVE-2010-4008	URL:http://lists.apple.com/archives/security-announce/2011/Mar/msg00006.html	View
508775	46592	CVE-2010-4008	DEBIAN:DSA-2128	View
508776	46592	CVE-2010-4008	URL:http://www.debian.org/security/2010/dsa-2128	View
508777	46592	CVE-2010-4008	HP:HPSBMA02662	View
508778	46592	CVE-2010-4008	URL:http://marc.info/?l=bugtraq&m=130331363227777&w=2	View
508779	46592	CVE-2010-4008	HP:SSRT100409	View
508780	46592	CVE-2010-4008	URL:http://marc.info/?l=bugtraq&m=130331363227777&w=2	View
508781	46592	CVE-2010-4008	HP:HPSBGN02970	View
508782	46592	CVE-2010-4008	URL:http://marc.info/?l=bugtraq&m=139447903326211&w=2	View
508783	46592	CVE-2010-4008	MANDRIVA:MDVSA-2010:243	View
508784	46592	CVE-2010-4008	URL:http://www.mandriva.com/security/advisories?name=MDVSA-2010:243	View
508785	46592	CVE-2010-4008	REDHAT:RHSA-2011:1749	View
508786	46592	CVE-2010-4008	URL:http://www.redhat.com/support/errata/RHSA-2011-1749.html	View
508787	46592	CVE-2010-4008	REDHAT:RHSA-2013:0217	View
508788	46592	CVE-2010-4008	URL:http://rhn.redhat.com/errata/RHSA-2013-0217.html	View
508789	46592	CVE-2010-4008	SUSE:SUSE-SR:2010:023	View
508790	46592	CVE-2010-4008	URL:http://lists.opensuse.org/opensuse-security-announce/2010-12/msg00000.html	View
508791	46592	CVE-2010-4008	UBUNTU:USN-1016-1	View
508792	46592	CVE-2010-4008	URL:http://www.ubuntu.com/usn/USN-1016-1	View
508793	46592	CVE-2010-4008	BID:44779	View
508794	46592	CVE-2010-4008	URL:http://www.securityfocus.com/bid/44779	View
508795	46592	CVE-2010-4008	OVAL:oval:org.mitre.oval:def:12148	View
508796	46592	CVE-2010-4008	URL:http://oval.mitre.org/repository/data/getDef?id=oval:org.mitre.oval:def:12148	View
508797	46592	CVE-2010-4008	SECUNIA:42109	View
508798	46592	CVE-2010-4008	URL:http://secunia.com/advisories/42109	View
508799	46592	CVE-2010-4008	SECUNIA:42175	View
508800	46592	CVE-2010-4008	URL:http://secunia.com/advisories/42175	View
508801	46592	CVE-2010-4008	SECUNIA:42314	View
508802	46592	CVE-2010-4008	URL:http://secunia.com/advisories/42314	View
508803	46592	CVE-2010-4008	SECUNIA:42429	View
508804	46592	CVE-2010-4008	URL:http://secunia.com/advisories/42429	View
508805	46592	CVE-2010-4008	SECUNIA:40775	View
508806	46592	CVE-2010-4008	URL:http://secunia.com/advisories/40775	View
508807	46592	CVE-2010-4008	VUPEN:ADV-2010-3046	View
508808	46592	CVE-2010-4008	URL:http://www.vupen.com/english/advisories/2010/3046	View
508809	46592	CVE-2010-4008	VUPEN:ADV-2010-3076	View
508810	46592	CVE-2010-4008	URL:http://www.vupen.com/english/advisories/2010/3076	View
508811	46592	CVE-2010-4008	VUPEN:ADV-2010-3100	View
508812	46592	CVE-2010-4008	URL:http://www.vupen.com/english/advisories/2010/3100	View
508813	46592	CVE-2010-4008	VUPEN:ADV-2011-0230	View

Related JVN

Id	JVN No.	Title	Summary	CVE No.	CVE Id	CVSS_v2	CVSS_v3	JVN URL	Actions
37515	JVNDB-2010-003300	Apple の iOS におけるパスワードロックを回避される脆弱性	Apple の iOS には、パスワードロックを回避される脆弱性が存在します。	CVE-2010-4012	46592	6.2		http://jvndb.jvn.jp/ja/contents/2010/JVNDB-2010-003300.html	View

Message	Memory use
Component initialization	1.38 MB
Controller action start	1.49 MB
Controller render start	2.34 MB
View render complete	2.84 MB

Message	Time in ms	Graph
Core Processing (Derived from $_SERVER["REQUEST_TIME"])	3.23
Event: Controller.initialize	0.02
Event: Controller.startup	0.07
Controller action	411.11
Event: Controller.beforeRender	4.65
» Processing toolbar data	4.55
Rendering View	17.30
» Event: View.beforeRender	0.02
» Rendering APP/View/Cveinfos/view.ctp	16.14
» Event: View.afterRender	0.02
» Event: View.beforeLayout	0.02
» Rendering APP/View/Layouts/default.ctp	0.68
» » Rendering CORE/Cake/View/Elements/sql_dump.ctp	0.14
Event: View.afterLayout	0.00

Constant	Value
APP	/virtual/inogo77/public_html/jvn/app/
APP_DIR	app
APPLIBS	/virtual/inogo77/public_html/jvn/app/Lib/
CACHE	/virtual/inogo77/public_html/jvn/app/tmp/cache/
CAKE	/virtual/inogo77/public_html/jvn/lib/Cake/
CAKE_CORE_INCLUDE_PATH	/virtual/inogo77/public_html/jvn/lib
CORE_PATH	/virtual/inogo77/public_html/jvn/lib/
CAKE_VERSION	2.6.0
CSS	/virtual/inogo77/public_html/jvn/app/webroot/css/
CSS_URL	css/
DS	/
FULL_BASE_URL	http://inogo77.s500.xrea.com
IMAGES	/virtual/inogo77/public_html/jvn/app/webroot/img/
IMAGES_URL	img/
JS	/virtual/inogo77/public_html/jvn/app/webroot/js/
JS_URL	js/
LOGS	/virtual/inogo77/public_html/jvn/app/tmp/logs/
ROOT	/virtual/inogo77/public_html/jvn
TESTS	/virtual/inogo77/public_html/jvn/app/Test/
TMP	/virtual/inogo77/public_html/jvn/app/tmp/
VENDORS	/virtual/inogo77/public_html/jvn/vendors/
WEBROOT_DIR	webroot
WWW_ROOT	/virtual/inogo77/public_html/jvn/app/webroot/

Environment Variable	Value
Php Version	5.6.40
Phprc	php56.ini
Php Fcgi Children	1
Pwd	/virtual/inogo77/public_html/.fast-cgi-bin
Php Fcgi Max Requests	10000
Shlvl	0
Path	/usr/local/bin:/usr/bin:/bin
Http Connection	close
Script Name	/jvn/app/webroot/index.php
Request Uri	/jvn/cveinfos/view/46592
Query String
Request Method	GET
Server Protocol	HTTP/1.1
Gateway Interface	CGI/1.1
Redirect Url	/jvn/app/webroot/cveinfos/view/46592
Remote Port	45844
Script Filename	/virtual/inogo77/public_html/jvn/app/webroot/index.php
Server Admin	[no address given]
Context Document Root	/virtual/inogo77/public_html
Context Prefix
Request Scheme	http
Document Root	/virtual/inogo77/public_html
Remote Addr	3.137.179.200
Server Port	80
Server Addr	160.251.151.205
Server Name	inogo77.s500.xrea.com
Server Software	Apache
Server Signature
Http Host	inogo77.s500.xrea.com
Http Accept Encoding	gzip, br, zstd, deflate
Http User Agent	Mozilla/5.0 AppleWebKit/537.36 (KHTML, like Gecko; compatible; ClaudeBot/1.0; +claudebot@anthropic.com)
Http Accept	/
Gem Home	/usr/local/rvm/gems/ruby-2.3.0
X Dostranslated Ip	3.137.179.200
Mm Country Code	US
Mmdb Info	result found
Mmdb Addr	3.137.179.200
Unique Id	aBUSZD7Njyh6K1qMPsbIOQAAAN0
Redirect Status	200
Redirect Gem Home	/usr/local/rvm/gems/ruby-2.3.0
Redirect X Dostranslated Ip	3.137.179.200
Redirect Mm Country Code	US
Redirect Mmdb Info	result found
Redirect Mmdb Addr	3.137.179.200
Redirect Unique Id	aBUSZD7Njyh6K1qMPsbIOQAAAN0
Redirect Redirect Status	200
Redirect Redirect Gem Home	/usr/local/rvm/gems/ruby-2.3.0
Redirect Redirect X Dostranslated Ip	3.137.179.200
Redirect Redirect Mm Country Code	US
Redirect Redirect Mmdb Info	result found
Redirect Redirect Mmdb Addr	3.137.179.200
Redirect Redirect Unique Id	aBUSZD7Njyh6K1qMPsbIOQAAAN0
Fcgi Role	RESPONDER
Php Self	/jvn/app/webroot/index.php
Request Time Float	1746211428.5618
Request Time	1746211428

CVE

Actions

Related CVE References

Related JVN

Request History

Session

Request

Cake Params

Post data

Query string

Cookie

Current Route

Sql Logs

default

Memory

Timers

Logs

View Variables

App Constants

CakePHP Constants

PHP Environment

Included Files

Include Paths

Included Files