V
Scaner-VS
ENRU
HomeCatalogSourcesCWECAPECATT&CKMitigationsDocs
Back to catalog
BDU:2015-01771
BDU
LowConfirmedExploit available

Уязвимость программной библиотеки для анализа XML-документов Libxml2 связана с выходом операции за допустимые границы буфера данных. Эксплу…

CVSS
3.7
Low
EPSS
0.00
p0
Published
2015-01-01
Updated
2015-01-01
Description

Уязвимость программной библиотеки для анализа XML-документов Libxml2 связана с выходом операции за допустимые границы буфера данных. Эксплуатация уязвимости позволяет нарушителю, действующему удаленно, вызвать отказ в обслуживании

Tags · CWE
Pre-auth
Affected products
Apache software foundation OpenofficeApache software foundation OpenofficeApache software foundation OpenofficeApache software foundation OpenofficeApache software foundation OpenofficeApache software foundation OpenofficeApache software foundation OpenofficeApache software foundation OpenofficeApache software foundation OpenofficeApache software foundation OpenofficeApache software foundation OpenofficeApple inc. ItunesApple inc. ItunesApple inc. ItunesApple inc. ItunesApple inc. ItunesApple inc. ItunesApple inc. ItunesApple inc. ItunesApple inc. Itunes
CVSS vector
CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:L
Timeline
2015-01-01
Published
2015-01-01
Updated
CVSS 3.1 breakdown
Attack Vector
AV: N
Network (N)
Attack Complexity
AC: H
High (H)
Privileges Required
PR: N
None (N)
User Interaction
UI: N
None (N)
Scope
S: U
Unchanged (U)
Confidentiality Impact
C: N
None (N)
Integrity Impact
I: N
None (N)
Availability Impact
A: L
Low (L)
Exploit indicators
EPSS
0.000 · p0
Known exploited (KEV)
No
Known exploits — Сканер-ВС
35810
exploitdb · https://www.exploit-db.com/exploits/35810
Enterprise
Affected software
ProductVendorStatus
openofficeapache software foundationTracked
openofficeapache software foundationTracked
openofficeapache software foundationTracked
openofficeapache software foundationTracked
openofficeapache software foundationTracked
openofficeapache software foundationTracked
openofficeapache software foundationTracked
openofficeapache software foundationTracked
openofficeapache software foundationTracked
openofficeapache software foundationTracked
openofficeapache software foundationTracked
itunesapple inc.Tracked
itunesapple inc.Tracked
itunesapple inc.Tracked
itunesapple inc.Tracked
itunesapple inc.Tracked
itunesapple inc.Tracked
itunesapple inc.Tracked
itunesapple inc.Tracked
itunesapple inc.Tracked
Source databases
BDU
Related vulnerabilities
CVE-2010-4008
External references
https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2010-4008@http://www.debian.org/security/dsa-2128/@@http://www.debian.org/security/dsa-2128/@http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-4008@https://nvd.nist.gov/vuln/detail/CVE-2010-4008@https://security-tracker.debian.org/tracker/CVE-2010-4008@http://code.google.com/p/chromium/issues/detail?id=58731@https://mail.gnome.org/archives/xml/2010-November/msg00015.html@https://access.redhat.com/security/cve/cve-2010-4008@https://ubuntu.com/security/notices/USN-1016-1@http://support.apple.com/kb/HT4456@http://support.apple.com/kb/HT4554@http://support.apple.com/kb/HT4566@http://support.apple.com/kb/HT4581@https://chromereleases.googleblog.com/2010/11/stable-channel-update.html@https://www.debian.org/security/2010/dsa-2128@http://www.openoffice.org/security/cves/CVE-2010-4008_CVE-2010-4494.html@https://kb.juniper.net/InfoCenter/index?page=content&id=JSA11176&cat=SIRT_1&actp=LIST&showDraft=false