CVE-2010-4008

CWE-119 — Buffer Overflow CWE-476 — NULL Pointer Dereference10 documents9 sources

Severity

4.3MEDIUM

EPSS

0.8%

top 26.73%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Apache Openoffice Apple Iphone OS Apple Itunes +12 more

Timeline

PublishedNov 17

Latest updateMay 13

Description

libxml2 before 2.7.8, as used in Google Chrome before 7.0.517.44, Apple Safari 5.0.2 and earlier, and other products, reads from invalid memory locations during processing of malformed XPath expressions, which allows context-dependent attackers to cause a denial of service (application crash) via a crafted XML document.

CVSS vector

AV:N/AC:M/C:N/I:N/A:PExploitability: 8.6 | Impact: 2.9

Affected Packages13 packages

▶NVDapple/safari< 5.0.4

▶NVDgoogle/chrome< 7.0.517.44

▶NVDapple/itunes< 10.2

▶NVDapple/mac_os_x< 10.6.7

▶NVDapple/iphone_os< 4.2

Also affects: Debian Linux 5.0, 6.0, Ubuntu Linux 10.04, 10.10, 6.06, 8.04, 9.10, Enterprise Linux 6.3

Patches

Patch: code.google.com ↗Patch: code.google.com ↗

🔴Vulnerability Details

GHSA

GHSA-472j-j78w-732c: libxml2 before 2↗2022-05-13

▶

OSV

CVE-2010-4008: libxml2 before 2↗2010-11-17

▶

CVEList

CVE-2010-4008: libxml2 before 2↗2010-11-16

▶

💥Exploits & PoCs

Exploit-DB

BEA Weblogic - Transfer-Encoding Buffer Overflow (Metasploit)↗2010-07-08

▶

📋Vendor Advisories

Ubuntu

libxml2 vulnerability↗2010-11-10

▶

Red Hat

libxml2: Crash (stack frame overflow or NULL pointer dereference) by traversal of XPath axis↗2010-11-04

▶

Debian

CVE-2010-4008: libxml2 - libxml2 before 2.7.8, as used in Google Chrome before 7.0.517.44, Apple Safari 5...↗2010

▶

💬Community

Bugzilla

CVE-2010-4008 libxml2: Crash (stack frame overflow or NULL pointer dereference) by traversal of XPath axis [fedora-all]↗2010-11-10

▶

Bugzilla

CVE-2010-4008 libxml2: Crash (stack frame overflow or NULL pointer dereference) by traversal of XPath axis↗2010-10-21

▶