Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2004-0989

Overview

Vulnerability Score 10.0 10.0
CVE Id CVE-2004-0989
Last Modified 21 Aug 2010 12:21:36
Published 01 Mar 2005 12:00:00
Confidentiality Impact COMPLETE COMPLETE
Integrity Impact COMPLETE COMPLETE
Availability Impact COMPLETE COMPLETE
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2004-0989

Summary

Multiple buffer overflows in libXML 2.6.12 and 2.6.13 (libxml2), and possibly other versions, may allow remote attackers to execute arbitrary code via (1) a long FTP URL that is not properly handled by the xmlNanoFTPScanURL function, (2) a long proxy URL containing FTP data that is not properly handled by the xmlNanoFTPScanProxy function, and other overflows related to manipulation of DNS length values, including (3) xmlNanoFTPConnect, (4) xmlNanoHTTPConnectHost, and (5) xmlNanoHTTPConnectHost.

Vulnerable Systems

Operating System

  • Redhat Fedora Core Core 2.0

  • Trustix Secure Linux 2.0

  • Trustix Secure Linux 2.1

  • Ubuntu Linux 4.1

Application

  • Xmlsoft Libxml 1.8.17

  • Xmlsoft Libxml2 2.5.11

  • Xmlsoft Libxml2 2.6.11

  • Xmlsoft Libxml2 2.6.12

  • Xmlsoft Libxml2 2.6.13

  • Xmlsoft Libxml2 2.6.14

  • Xmlsoft Libxml2 2.6.6

  • Xmlsoft Libxml2 2.6.7

  • Xmlsoft Libxml2 2.6.8

  • Xmlsoft Libxml2 2.6.9

  • Xmlstarlet Command Line Xml Toolkit 0.9.1


References

BID - 11526

XF - libxml2-xmlnanoftpscanproxy-bo(17875)

XF - libxml2-xmlnanoftpscanurl-bo(17870)

DEBIAN - DSA-582

APPLE - APPLE-SA-2005-01-25

XF - libxml2-nanohttp-file-bo(17876)

XF - libxml2-nanoftp-file-bo(17872)

REDHAT - RHSA-2004:650

REDHAT - RHSA-2004:615

OSVDB - 11324

OSVDB - 11180

OSVDB - 11179

SUSE - SUSE-SR:2005:001

GENTOO - GLSA-200411-05

CIAC - P-029

SECTRACK - 1011941

SECUNIA - 13000

UBUNTU - USN-89-1

BUGTRAQ - 20041026 libxml2 remote buffer overflows (not in xml parsing code though)

CONECTIVA - CLA-2004:890


Last Updated: 27 May 2016 10:38:50