Vulnerability in Sgi Propack

CVE-2004-0110

Buffer overflow in the (1) nanohttp or (2) nanoftp modules in XMLSoft Libxml 2 (Libxml2) 2.6.0 through 2.6.5 allow remote attackers to execute arbitrary code via a long URL.

EPSS: 0.242 (97.6th percentile) — read the EPSS interpretation.

Affected products

Sgi Propack — versions 2.3, 2.4
Xmlsoft Libxml — versions 1.8.17
Xmlsoft Libxml2 — versions 2.4.19, 2.4.23, 2.5.4
N/a — versions n/a

References

cve@mitre.org (x_refsource_OVAL, signature, vdb-entry)
cve@mitre.org (x_refsource_OVAL, signature, vdb-entry)
cve@mitre.org (mailing-list, x_refsource_BUGTRAQ)
cve@mitre.org (x_refsource_REDHAT, vendor-advisory, Patch, Vendor Advisory)
cve@mitre.org (vdb-entry, x_refsource_XF)
cve@mitre.org (x_refsource_REDHAT, vendor-advisory)
cve@mitre.org (Patch, vdb-entry, x_refsource_BID, Vendor Advisory)
cve@mitre.org (vendor-advisory, x_refsource_DEBIAN)
cve@mitre.org (x_refsource_CONFIRM)
cve@mitre.org (x_refsource_REDHAT, vendor-advisory)