Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2008-4226

Overview

Vulnerability Score 10.0 10.0
CVE Id CVE-2008-4226
Last Modified 07 Mar 2011 10:12:08
Published 25 Nov 2008 06:30:00
Confidentiality Impact COMPLETE COMPLETE
Integrity Impact COMPLETE COMPLETE
Availability Impact COMPLETE COMPLETE
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2008-4226

Summary

Integer overflow in the xmlSAX2Characters function in libxml2 2.7.2 allows context-dependent attackers to cause a denial of service (memory corruption) or possibly execute arbitrary code via a large XML document.

Vulnerable Systems

Application

  • Xmlsoft Libxml 2.7.2


References

CONFIRM - https://admin.fedoraproject.org/updates/libxml2-2.7.2-2.fc9

CONFIRM - https://admin.fedoraproject.org/updates/libxml2-2.7.2-2.fc10

DEBIAN - DSA-1666

FEDORA - FEDORA-2008-9773

FEDORA - FEDORA-2008-9729

CONFIRM - https://bugzilla.redhat.com/show_bug.cgi?id=470466

VUPEN - ADV-2009-1621

VUPEN - ADV-2009-1522

VUPEN - ADV-2009-0323

VUPEN - ADV-2009-0301

VUPEN - ADV-2009-0034

VUPEN - ADV-2008-3176

CONFIRM - http://www.vmware.com/security/advisories/VMSA-2009-0001.html

UBUNTU - USN-673-1

BID - 32326

REDHAT - RHSA-2008:0988

OSVDB - 49993

MANDRIVA - MDVSA-2008:231

CONFIRM - http://wiki.rpath.com/Advisories:rPSA-2008-0325

CONFIRM - http://support.avaya.com/elmodocs2/security/ASA-2009-067.htm

CONFIRM - http://support.avaya.com/elmodocs2/security/ASA-2009-002.htm

CONFIRM - http://support.apple.com/kb/HT3639

CONFIRM - http://support.apple.com/kb/HT3613

SUNALERT - 265329

SUNALERT - 261688

SUNALERT - 251406

CONFIRM - http://sunsolve.sun.com/search/document.do?assetkey=1-21-141243-01-1

CONFIRM - http://sunsolve.sun.com/search/document.do?assetkey=1-21-126356-03-1

SLACKWARE - SSA:2008-324-01

SECTRACK - 1021238

GENTOO - GLSA-200812-06

SECUNIA - 36235

SECUNIA - 36173

SECUNIA - 35379

SECUNIA - 34247

SECUNIA - 33792

SECUNIA - 33746

SECUNIA - 33417

SECUNIA - 32974

SECUNIA - 32872

SECUNIA - 32811

SECUNIA - 32807

SECUNIA - 32802

SECUNIA - 32773

SECUNIA - 32766

SECUNIA - 32764

SECUNIA - 32762

SUSE - SUSE-SR:2008:026

APPLE - APPLE-SA-2009-06-17-1

APPLE - APPLE-SA-2009-06-08-1

HP - HPSBMA02492

HP - SSRT100079

Related Patches

Novell SUSE 2008:5756 libxml2 security update for SLE 10 SP1 i586

Apple 2009-06-08 Safari Update 4.0.1 (Leopard)

Apple 2009-06-08 Safari Update 4 (Tiger)


Last Updated: 27 May 2016 10:49:56