CVE-2011-0216
published 2011-07-21CVE-2011-0216: Off-by-one error in libxml in Apple Safari before 5.0.6 allows remote attackers to execute arbitrary code or cause a denial of service (heap-based buffer…
PriorityP342critical9.3CVSS 2.0
AVNACMAuNCCICAC
EPSS
5.31%
91.6th percentile
Off-by-one error in libxml in Apple Safari before 5.0.6 allows remote attackers to execute arbitrary code or cause a denial of service (heap-based buffer overflow and application crash) via a crafted web site.
Affected
61 ranges· showing 25
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| apple | safari | <= 5.0.5 | — |
| apple | safari | — | — |
| apple | safari | — | — |
| apple | safari | — | — |
| apple | safari | — | — |
| apple | safari | — | — |
| apple | safari | — | — |
| apple | safari | — | — |
| apple | safari | — | — |
| apple | safari | — | — |
| apple | safari | — | — |
| apple | safari | — | — |
| apple | safari | — | — |
| apple | safari | — | — |
| apple | safari | — | — |
| apple | safari | — | — |
| apple | safari | — | — |
| apple | safari | — | — |
| apple | safari | — | — |
| apple | safari | — | — |
| apple | safari | — | — |
| apple | safari | — | — |
| apple | safari | — | — |
| apple | safari | — | — |
| apple | safari | — | — |
CVSS provenance
nvdv2.09.3CRITICALAV:N/AC:M/Au:N/C:C/I:C/A:C
osv9.3CRITICAL
vendor_debian9.3CRITICAL
vendor_redhat9.3CRITICAL
vendor_ubuntu9.3CRITICAL
Stop checking back — get the weekly exploitation signal.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
GHSA
GHSA-rm98-6q39-jh4q: Off-by-one error in libxml in Apple Safari before 5
ghsa_unreviewed·2022-05-17
CVE-2011-0216 [HIGH] GHSA-rm98-6q39-jh4q: Off-by-one error in libxml in Apple Safari before 5
Off-by-one error in libxml in Apple Safari before 5.0.6 allows remote attackers to execute arbitrary code or cause a denial of service (heap-based buffer overflow and application crash) via a crafted web site.
OSV
CVE-2011-0216: Off-by-one error in libxml in Apple Safari before 5
osv·2011-07-21·CVSS 9.3
CVE-2011-0216 [CRITICAL] CVE-2011-0216: Off-by-one error in libxml in Apple Safari before 5
Off-by-one error in libxml in Apple Safari before 5.0.6 allows remote attackers to execute arbitrary code or cause a denial of service (heap-based buffer overflow and application crash) via a crafted web site.
Ubuntu
libxml2 vulnerabilities
vendor_ubuntu·2012-01-19·CVSS 9.3
CVE-2011-0216 [CRITICAL] libxml2 vulnerabilities
Title: libxml2 vulnerabilities
Summary: Applications using libxml2 could be made to crash or run programs as your
login if they opened a specially crafted file.
It was discovered that libxml2 contained an off by one error. If a user or
application linked against libxml2 were tricked into opening a specially
crafted XML file, an attacker could cause the application to crash or
possibly execute arbitrary code with the privileges of the user invoking
the program. (CVE-2011-0216)
It was discovered that libxml2 is vulnerable to double-free conditions
when parsing certain XML documents. This could allow a remote attacker to
cause a denial of service. (CVE-2011-2821, CVE-2011-2834)
It was discovered that libxml2 did not properly detect end of file when
parsing certain XML documents. An attack
Red Hat
libxml2: Off-by-one error leading to heap-based buffer overflow in encoding
vendor_redhat·2011-07-20·CVSS 9.3
CVE-2011-0216 [CRITICAL] CWE-122 libxml2: Off-by-one error leading to heap-based buffer overflow in encoding
libxml2: Off-by-one error leading to heap-based buffer overflow in encoding
Off-by-one error in libxml in Apple Safari before 5.0.6 allows remote attackers to execute arbitrary code or cause a denial of service (heap-based buffer overflow and application crash) via a crafted web site.
Debian
CVE-2011-0216: libxml2 - Off-by-one error in libxml in Apple Safari before 5.0.6 allows remote attackers ...
vendor_debian·2011·CVSS 9.3
CVE-2011-0216 [CRITICAL] CVE-2011-0216: libxml2 - Off-by-one error in libxml in Apple Safari before 5.0.6 allows remote attackers ...
Off-by-one error in libxml in Apple Safari before 5.0.6 allows remote attackers to execute arbitrary code or cause a denial of service (heap-based buffer overflow and application crash) via a crafted web site.
Scope: local
bookworm: resolved (fixed in 2.7.8.dfsg-5.1)
bullseye: resolved (fixed in 2.7.8.dfsg-5.1)
forky: resolved (fixed in 2.7.8.dfsg-5.1)
sid: resolved (fixed in 2.7.8.dfsg-5.1)
trixie: resolved (fixed in 2.7.8.dfsg-5.1)
No detection rules found.
No public exploits indexed.
Bugzilla
CVE-2011-0216 CVE-2011-3905 CVE-2011-3919 mingw32-libxml2: Off-by-one error leading to heap-based buffer overflow in encoding [fedora-all]
bugzilla·2011-11-22·CVSS 9.3
CVE-2011-0216 [CRITICAL] CVE-2011-0216 CVE-2011-3905 CVE-2011-3919 mingw32-libxml2: Off-by-one error leading to heap-based buffer overflow in encoding [fedora-all]
CVE-2011-0216 CVE-2011-3905 CVE-2011-3919 mingw32-libxml2: Off-by-one error leading to heap-based buffer overflow in encoding [fedora-all]
This is an automatically created tracking bug! It was created to ensure
that one or more security vulnerabilities are fixed in affected Fedora
versions.
For comments that are specific to the vulnerability please use bugs filed
against "Security Response" product referenced in the "Blocks" field.
For more information see:
http://fedoraproject.org/wiki/Security/TrackingBugs
When creating a Bodhi update request, please include this bug ID and the
bug IDs of this bug's parent bugs filed against the "Security Response"
product (the top-level CVE bugs). Please mention the CVE IDs being fixed
in the RPM changelog when available.
Bodhi update submission li
Bugzilla
CVE-2011-0216 libxml2: Off-by-one error leading to heap-based buffer overflow in encoding [fedora-all]
bugzilla·2011-11-22·CVSS 9.3
CVE-2011-0216 [CRITICAL] CVE-2011-0216 libxml2: Off-by-one error leading to heap-based buffer overflow in encoding [fedora-all]
CVE-2011-0216 libxml2: Off-by-one error leading to heap-based buffer overflow in encoding [fedora-all]
This is an automatically created tracking bug! It was created to ensure
that one or more security vulnerabilities are fixed in affected Fedora
versions.
For comments that are specific to the vulnerability please use bugs filed
against "Security Response" product referenced in the "Blocks" field.
For more information see:
http://fedoraproject.org/wiki/Security/TrackingBugs
When creating a Bodhi update request, please include this bug ID and the
bug IDs of this bug's parent bugs filed against the "Security Response"
product (the top-level CVE bugs). Please mention the CVE IDs being fixed
in the RPM changelog when available.
Bodhi update submission link:
https://admin.fedoraproject.org/
Bugzilla
CVE-2011-0216 libxml2: Off-by-one error leading to heap-based buffer overflow in encoding
bugzilla·2011-07-22·CVSS 9.3
CVE-2011-0216 [CRITICAL] CVE-2011-0216 libxml2: Off-by-one error leading to heap-based buffer overflow in encoding
CVE-2011-0216 libxml2: Off-by-one error leading to heap-based buffer overflow in encoding
Common Vulnerabilities and Exposures assigned an identifier CVE-2011-0216 to
the following vulnerability:
Off-by-one error in libxml in Apple Safari before 5.0.6 allows remote attackers to execute arbitrary code or cause a denial of service (heap-based buffer overflow and application crash) via a crafted web site.
References:
[1] http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-0216
[2] http://support.apple.com/kb/HT4808
[3] http://lists.apple.com/archives/security-announce/2011//Jul/msg00002.html
Discussion:
Unfortunately right now we don't have further information about this flaw, than it is listed above. Thus not sure, if this flaw might be applicable to libxml / libxml2 / mingw32-libxml
http://lists.apple.com/archives/Security-announce/2011//Oct/msg00001.htmlhttp://lists.apple.com/archives/Security-announce/2011//Oct/msg00002.htmlhttp://lists.apple.com/archives/security-announce/2011//Jul/msg00002.htmlhttp://rhn.redhat.com/errata/RHSA-2013-0217.htmlhttp://support.apple.com/kb/HT4808http://support.apple.com/kb/HT4999http://support.apple.com/kb/HT5001http://www.debian.org/security/2012/dsa-2394http://www.mandriva.com/security/advisories?name=MDVSA-2011:188http://www.redhat.com/support/errata/RHSA-2011-1749.htmlhttp://lists.apple.com/archives/Security-announce/2011//Oct/msg00001.htmlhttp://lists.apple.com/archives/Security-announce/2011//Oct/msg00002.htmlhttp://lists.apple.com/archives/security-announce/2011//Jul/msg00002.htmlhttp://rhn.redhat.com/errata/RHSA-2013-0217.htmlhttp://support.apple.com/kb/HT4808http://support.apple.com/kb/HT4999http://support.apple.com/kb/HT5001http://www.debian.org/security/2012/dsa-2394http://www.mandriva.com/security/advisories?name=MDVSA-2011:188http://www.redhat.com/support/errata/RHSA-2011-1749.html
2011-07-21
Published