cbcvebase.
CVE-2004-0989
published 2005-03-01

CVE-2004-0989: Multiple buffer overflows in libXML 2.6.12 and 2.6.13 (libxml2), and possibly other versions, may allow remote attackers to execute arbitrary code via (1) a…

PriorityP352critical10CVSS 2.0
AVNACLAuNCCICAC
EXPLOIT
EPSS
21.69%
97.3th percentile
Multiple buffer overflows in libXML 2.6.12 and 2.6.13 (libxml2), and possibly other versions, may allow remote attackers to execute arbitrary code via (1) a long FTP URL that is not properly handled by the xmlNanoFTPScanURL function, (2) a long proxy URL containing FTP data that is not properly handled by the xmlNanoFTPScanProxy function, and other overflows related to manipulation of DNS length values, including (3) xmlNanoFTPConnect, (4) xmlNanoHTTPConnectHost, and (5) xmlNanoHTTPConnectHost.

Affected

20 ranges
VendorProductVersion rangeFixed in
debianlibxml2< libxml2 2.6.11-5 (bookworm)libxml2 2.6.11-5 (bookworm)
redhatfedora_core
trustixsecure_linux
trustixsecure_linux
ubuntuubuntu_linux
xmlsoftlibxml
xmlsoftlibxml2
xmlsoftlibxml2
xmlsoftlibxml2
xmlsoftlibxml2
xmlsoftlibxml2
xmlsoftlibxml2
xmlsoftlibxml2
xmlsoftlibxml2
xmlsoftlibxml2
xmlsoftlibxml2>= 0 < 2.6.11-52.6.11-5
xmlsoftlibxml2>= 0 < 2.6.11-52.6.11-5
xmlsoftlibxml2>= 0 < 2.6.11-52.6.11-5
xmlsoftlibxml2>= 0 < 2.6.11-52.6.11-5
xmlstarletcommand_line_xml_toolkit

CVSS provenance

nvdv2.010.0CRITICALAV:N/AC:L/Au:N/C:C/I:C/A:C
osv10.0CRITICAL
vendor_debian10.0CRITICAL
vendor_redhat10.0CRITICAL
CVEs like this are exactly what “Exploited This Week” covers.

Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.