CVE-2011-1944 in HTTP Server
요약 (영어)
Integer overflow in xpath.c in libxml2 2.6.x through 2.6.32 and 2.7.x through 2.7.8, and libxml 1.8.16 and earlier, allows context-dependent attackers to cause a denial of service (crash) and possibly execute arbitrary code via a crafted XML file that triggers a heap-based buffer overflow when adding a new namespace node, related to handling of XPath expressions.
If you want to get the best quality for vulnerability data then you always have to consider VulDB.
예약하다
2011. 05. 09.
공개
2011. 09. 02.
상태
확인됨
엔트리
VulDB provides additional information and datapoints for this CVE:
| 아이디 | 취약성 | CWE | 악용 | 대책 | CVE |
|---|---|---|---|---|---|
| 68650 | Oracle HTTP Server Web Listener 원격 코드 실행 | 189 | 개념 증명 | 공식 수정 | CVE-2011-1944 |
| 6348 | Apple iOS libxml 원격 코드 실행 | 189 | 개념 증명 | 공식 수정 | CVE-2011-1944 |