cbcvebase.
CVE-2008-2935
published 2008-08-01

CVE-2008-2935: Multiple heap-based buffer overflows in the rc4 (1) encryption (aka exsltCryptoRc4EncryptFunction) and (2) decryption (aka exsltCryptoRc4DecryptFunction)…

PriorityP351high7.5CVSS 2.0
AVNACLAuNCPIPAP
EXPLOIT
EPSS
12.79%
95.8th percentile
Multiple heap-based buffer overflows in the rc4 (1) encryption (aka exsltCryptoRc4EncryptFunction) and (2) decryption (aka exsltCryptoRc4DecryptFunction) functions in crypto.c in libexslt in libxslt 1.1.8 through 1.1.24 allow context-dependent attackers to execute arbitrary code via an XML file containing a long string as "an argument in the XSL input."

Affected

22 ranges
VendorProductVersion rangeFixed in
debianlibxslt< libxslt 1.1.24-2 (bookworm)libxslt 1.1.24-2 (bookworm)
xmlsoftlibxslt
xmlsoftlibxslt
xmlsoftlibxslt
xmlsoftlibxslt
xmlsoftlibxslt
xmlsoftlibxslt
xmlsoftlibxslt
xmlsoftlibxslt
xmlsoftlibxslt
xmlsoftlibxslt
xmlsoftlibxslt
xmlsoftlibxslt
xmlsoftlibxslt
xmlsoftlibxslt
xmlsoftlibxslt
xmlsoftlibxslt
xmlsoftlibxslt
xmlsoftlibxslt>= 0 < 1.1.24-21.1.24-2
xmlsoftlibxslt>= 0 < 1.1.24-21.1.24-2
xmlsoftlibxslt>= 0 < 1.1.24-21.1.24-2
xmlsoftlibxslt>= 0 < 1.1.24-21.1.24-2

CVSS provenance

nvdv2.07.5HIGHAV:N/AC:L/Au:N/C:P/I:P/A:P
osv7.5HIGH
vendor_debian7.5HIGH
vendor_redhat7.5HIGH
vendor_ubuntu7.5HIGH
CVEs like this are exactly what “Exploited This Week” covers.

Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.