CVE-2004-0110 - Secunia Advisories - Vulnerability Information

CVE Reference: CVE-2004-0110
NOTE: The text on this page is written by CVE MITRE and reflects neither the opinions of Secunia or the results of our research. All data on this page is written and maintained by CVE MITRE.

Original Page at CVE MITRE: CVE-2004-0110

Description: Buffer overflow in the (1) nanohttp or (2) nanoftp modules in XMLSoft Libxml 2 (Libxml2) 2.6.0 through 2.6.5 allow remote attackers to execute arbitrary code via a long URL.

CVE Status: Candidate

References: XF http://xforce.iss.net/xforce/xfdb/15301 http://xforce.iss.net/xforce/xfdb/15302 SUSE http://www.novell.com/linux/security/advisories/2005_01_sr.html SAID Secunia Advisory: SA10958 REDHAT http://www.redhat.com/support/errata/RHSA-2004-650.html http://www.redhat.com/support/errata/RHSA-2004-091.html http://rhn.redhat.com/errata/RHSA-2004-090.html OVAL http://oval.mitre.org/repository/data/getDef?id=oval:org.mitre.oval:def:833 http://oval.mitre.org/repository/data/getDef?id=oval:org.mitre.oval:def:875 GENTOO http://security.gentoo.org/glsa/glsa-200403-01.xml DEBIAN http://www.debian.org/security/2004/dsa-455 CONFIRM http://www.xmlsoft.org/news.html CIAC http://www.ciac.org/ciac/bulletins/o-086.shtml CERT-VN 493966 BUGTRAQ http://marc.theaimsgroup.com/?l=bugtraq&m=107860178228804&w=2 http://marc.theaimsgroup.com/?l=bugtraq&m=107851606605420&w=2 BID 9718

Return to the previous page.