CVE

Id
8538  
CVE No.
CVE-2004-0110  
Status
Candidate  
Description
Buffer overflow in the (1) nanohttp or (2) nanoftp modules in XMLSoft Libxml 2 (Libxml2) 2.6.0 through 2.6.5 allow remote attackers to execute arbitrary code via a long URL.  
Phase
Modified (20100819)  
Votes
ACCEPT(6) Armstrong, Baker, Cole, Cox, Green, Wall | NOOP(1) Christey  
Comments
Christey> CONECTIVA:CLA-2004:836 | URL:http://distro.conectiva.com.br/atualizacoes/?id=a&anuncio=000836 | Christey> Add APPLE-SA-2004-04-05 | CONFIRM:http://lists.apple.com/mhonarc/security-announce/msg00047.html | Green> VERIFIED-BY-SOMEONE-I-TRUST | Christey> Normalize Trustix references | Christey> FEDORA:FEDORA-2004-1324 | URL:http://marc.theaimsgroup.com/?l=bugtraq&m=109035140702164&w=2  

Actions

Related CVE References

Id CVE Id CVE No. Reference Actions
52712 8538 CVE-2004-0110 CONFIRM:http://www.xmlsoft.org/news.html  View
52713 8538 CVE-2004-0110 DEBIAN:DSA-455  View
52714 8538 CVE-2004-0110 URL:http://www.debian.org/security/2004/dsa-455  View
52715 8538 CVE-2004-0110 GENTOO:GLSA-200403-01  View
52716 8538 CVE-2004-0110 URL:http://security.gentoo.org/glsa/glsa-200403-01.xml  View
52717 8538 CVE-2004-0110 REDHAT:RHSA-2004:090  View
52718 8538 CVE-2004-0110 URL:http://rhn.redhat.com/errata/RHSA-2004-090.html  View
52719 8538 CVE-2004-0110 REDHAT:RHSA-2004:091  View
52720 8538 CVE-2004-0110 URL:http://www.redhat.com/support/errata/RHSA-2004-091.html  View
52721 8538 CVE-2004-0110 BUGTRAQ:20040305 [OpenPKG-SA-2004.003] OpenPKG Security Advisory (libxml)  View
52722 8538 CVE-2004-0110 URL:http://marc.info/?l=bugtraq&m=107851606605420&w=2  View
52723 8538 CVE-2004-0110 BUGTRAQ:20040306 TSLSA-2004-0010 - libxml2  View
52724 8538 CVE-2004-0110 URL:http://marc.info/?l=bugtraq&m=107860178228804&w=2  View
52725 8538 CVE-2004-0110 REDHAT:RHSA-2004:650  View
52726 8538 CVE-2004-0110 URL:http://www.redhat.com/support/errata/RHSA-2004-650.html  View
52727 8538 CVE-2004-0110 SUSE:SUSE-SR:2005:001  View
52728 8538 CVE-2004-0110 URL:http://www.novell.com/linux/security/advisories/2005_01_sr.html  View
52729 8538 CVE-2004-0110 CERT-VN:VU#493966  View
52730 8538 CVE-2004-0110 URL:http://www.kb.cert.org/vuls/id/493966  View
52731 8538 CVE-2004-0110 CIAC:O-086  View
52732 8538 CVE-2004-0110 URL:http://www.ciac.org/ciac/bulletins/o-086.shtml  View
52733 8538 CVE-2004-0110 BID:9718  View
52734 8538 CVE-2004-0110 URL:http://www.securityfocus.com/bid/9718  View
52735 8538 CVE-2004-0110 OVAL:oval:org.mitre.oval:def:11626  View
52736 8538 CVE-2004-0110 URL:http://oval.mitre.org/repository/data/getDef?id=oval:org.mitre.oval:def:11626  View
52737 8538 CVE-2004-0110 SECUNIA:10958  View
52738 8538 CVE-2004-0110 URL:http://secunia.com/advisories/10958/  View
52739 8538 CVE-2004-0110 OVAL:oval:org.mitre.oval:def:833  View
52740 8538 CVE-2004-0110 URL:http://oval.mitre.org/repository/data/getDef?id=oval:org.mitre.oval:def:833  View
52741 8538 CVE-2004-0110 OVAL:oval:org.mitre.oval:def:875  View
52742 8538 CVE-2004-0110 URL:http://oval.mitre.org/repository/data/getDef?id=oval:org.mitre.oval:def:875  View
52743 8538 CVE-2004-0110 XF:libxml2-nanohttp-bo(15301)  View
52744 8538 CVE-2004-0110 URL:http://xforce.iss.net/xforce/xfdb/15301  View
52745 8538 CVE-2004-0110 XF:libxml2-nanoftp-bo(15302)  View

Related JVN

Id JVN No. Title Summary CVE No. CVE Id CVSS_v2 CVSS_v3 JVN URL Actions
62738 JVNDB-2004-000079 gdk-pixbuf の不正な BMP ファイルの処理によるサービス運用妨害 (Dos) の脆弱性 gdk-pixbuf には、BMP ファイルを解釈する際にヘッダ中のカラーインデックスに関する値を適切に扱わない不備があり、カラーインデックスが指定されているにも関わらず実際のインデックスが存在しない場合にクラッシュする脆弱性が存在します。 CVE-2004-0111 8538 5 http://jvndb.jvn.jp/ja/contents/2004/JVNDB-2004-000079.html  View