Lucene search

K
cveRedhatCVE-2007-6284
HistoryJan 12, 2008 - 2:46 a.m.

CVE-2007-6284

2008-01-1202:46:00
CWE-399
redhat
web.nvd.nist.gov
46
cve-2007-6284
xmlcurrentchar
libxml2
denial of service
security
vulnerability
nvd

CVSS2

5

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:N/I:N/A:P

AI Score

5.9

Confidence

Low

EPSS

0.024

Percentile

90.2%

The xmlCurrentChar function in libxml2 before 2.6.31 allows context-dependent attackers to cause a denial of service (infinite loop) via XML containing invalid UTF-8 sequences.

Affected configurations

Nvd
Node
debiandebian_linuxMatch3.1
OR
debiandebian_linuxMatch3.1alpha
OR
debiandebian_linuxMatch3.1amd64
OR
debiandebian_linuxMatch3.1arm
OR
debiandebian_linuxMatch3.1hppa
OR
debiandebian_linuxMatch3.1ia-32
OR
debiandebian_linuxMatch3.1ia-64
OR
debiandebian_linuxMatch3.1m68k
OR
debiandebian_linuxMatch3.1mips
OR
debiandebian_linuxMatch3.1mipsel
OR
debiandebian_linuxMatch3.1ppc
OR
debiandebian_linuxMatch3.1s-390
OR
debiandebian_linuxMatch3.1sparc
OR
debiandebian_linuxMatch4.0
OR
debiandebian_linuxMatch4.0alpha
OR
debiandebian_linuxMatch4.0amd64
OR
debiandebian_linuxMatch4.0arm
OR
debiandebian_linuxMatch4.0hppa
OR
debiandebian_linuxMatch4.0ia-32
OR
debiandebian_linuxMatch4.0ia-64
OR
debiandebian_linuxMatch4.0m68k
OR
debiandebian_linuxMatch4.0mips
OR
debiandebian_linuxMatch4.0mipsel
OR
debiandebian_linuxMatch4.0powerpc
OR
debiandebian_linuxMatch4.0s-390
OR
debiandebian_linuxMatch4.0sparc
OR
mandrakesoftmandrake_linuxMatch2007
OR
mandrakesoftmandrake_linuxMatch2007x86_64
OR
mandrakesoftmandrake_linuxMatch2007.1
OR
mandrakesoftmandrake_linuxMatch2007.1x86_64
OR
mandrakesoftmandrake_linuxMatch2008.0
OR
mandrakesoftmandrake_linuxMatch2008.0x86_64
OR
mandrakesoftmandrake_linux_corporate_serverMatch3.0
OR
mandrakesoftmandrake_linux_corporate_serverMatch3.0x86_64
OR
mandrakesoftmandrake_linux_corporate_serverMatch4.0
OR
mandrakesoftmandrake_linux_corporate_serverMatch4.0x86_64
OR
redhatfedoraMatch7
OR
redhatfedoraMatch8
VendorProductVersionCPE
debiandebian_linux3.1cpe:2.3:o:debian:debian_linux:3.1:*:*:*:*:*:*:*
debiandebian_linux3.1cpe:2.3:o:debian:debian_linux:3.1:*:alpha:*:*:*:*:*
debiandebian_linux3.1cpe:2.3:o:debian:debian_linux:3.1:*:amd64:*:*:*:*:*
debiandebian_linux3.1cpe:2.3:o:debian:debian_linux:3.1:*:arm:*:*:*:*:*
debiandebian_linux3.1cpe:2.3:o:debian:debian_linux:3.1:*:hppa:*:*:*:*:*
debiandebian_linux3.1cpe:2.3:o:debian:debian_linux:3.1:*:ia-32:*:*:*:*:*
debiandebian_linux3.1cpe:2.3:o:debian:debian_linux:3.1:*:ia-64:*:*:*:*:*
debiandebian_linux3.1cpe:2.3:o:debian:debian_linux:3.1:*:m68k:*:*:*:*:*
debiandebian_linux3.1cpe:2.3:o:debian:debian_linux:3.1:*:mips:*:*:*:*:*
debiandebian_linux3.1cpe:2.3:o:debian:debian_linux:3.1:*:mipsel:*:*:*:*:*
Rows per page:
1-10 of 381

References

CVSS2

5

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:N/I:N/A:P

AI Score

5.9

Confidence

Low

EPSS

0.024

Percentile

90.2%