Libxml2 URL Parsing Buffer Overflow May Let Remote Users Execute Arbitrary Code
|
|
SecurityTracker Alert ID: 1009222
|
|
SecurityTracker URL: http://securitytracker.com/id?1009222
|
|
CVE Reference: CAN-2004-0110
(Links to External Site)
|
Date: Feb 26 2004
|
Impact: Execution of arbitrary code via network, User access via network
|
Fix Available: Yes
Vendor Confirmed: Yes
|
Version(s): prior to 2.6.6
|
Description: A buffer overflow vulnerability was reported in Libxml2. A remote user may be able to execute arbitrary code on an application that uses Libxml2.
It is reported that there is an overflow in libxml2 that can be triggered when parsing remote resources via FTP or HTTP. A long
URL can trigger the overflow, the report said.
The flaw reportedly resides in 'nanoftp.c' and 'nanohttp.c'
Yuuichi Teranishi
is credited with discovering the flaw.
|
Impact: A remote user may be able to cause a target application that uses Libxml2 to execute arbitrary code with the privileges of the target application. The specific impact depends on the application using Libxml2.
|
Solution: The vendor has released a fixed version (2.6.6 and later), available at:
http://www.xmlsoft.org/downloads.html
|
Vendor URL: www.xmlsoft.org/index.html (Links to External Site)
|
Cause: Boundary error
|
Underlying OS: Linux (Any), UNIX (Any)
|
|
Message History:
This archive entry has one or more follow-up message(s) listed below.
|
Source Message Contents
|
Date: Thu, 26 Feb 2004 09:26:21 -0500
Subject: CAN-2004-0110
|
CVE: CAN-2004-0110
Red Hat reported that there is an overflow in libxml2 that can be triggered when parsing
remote resources via FTP or HTTP. A long URL can trigger the overflow.
Yuuichi Teranishi is credited with discovering the flaw.
Versions prior to 2.6.6 are reportedly affected.
|
|
