Lucene search
K

20 matches found

Tenable Nessus
Tenable Nessus
added 2024/06/03 12:0 a.m.19 views

RHEL 6 : libxml2 (Unpatched Vulnerability)

The remote Redhat Enterprise Linux 6 host has one or more packages installed that are affected by multiple vulnerabilities that have been acknowledged by the vendor but will not be patched. - libxml2: Use after free via namespace node in XPointer ranges CVE-2016-4658 - libxml2: Missing validation...

7.5CVSS7.6AI score0.08628EPSS
Exploits9References18
Rosalinux
Rosalinux
added 2021/07/02 5:25 p.m.30 views

Advisory ROSA-SA-2021-1905

Software: libxml2 2.9.1 OS: Cobalt 7.9 CVE-ID: CVE-2013-0339 CVE-Crit: HIGH CVE-DESC: libxml2 before 2.9.1 does not handle external entity extension properly if the application developer does not use the xmlSAX2ResolveEntity or xmlSetExternalEntityLoader function, which allows remote attackers to...

9.8CVSS8.8AI score0.05436EPSS
Exploits1
OpenVAS
OpenVAS
added 2021/06/09 12:0 a.m.22 views

SUSE: Security Advisory (SUSE-SU-2013:1627-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5CVSS7.8AI score0.04733EPSS
Exploits3References2
OpenVAS
OpenVAS
added 2021/06/09 12:0 a.m.22 views

SUSE: Security Advisory (SUSE-SU-2013:0743-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

6.8CVSS9.7AI score0.04382EPSS
Exploits2References2
OpenVAS
OpenVAS
added 2021/06/09 12:0 a.m.30 views

SUSE: Security Advisory (SUSE-SU-2013:0744-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

6.8CVSS9.6AI score0.03609EPSS
Exploits1References2
OSV
OSV
added 2014/01/21 6:55 p.m.0 views

BELL-CVE-2013-0339 CVE-2013-0339 does not affect BellSoft software

Bulletin has no description...

6.8CVSS7.3AI score0.03609EPSS
Exploits1References1
CVE
CVE
added 2014/01/21 6:0 p.m.111 views

CVE-2013-0339

CVE-2013-0339 affects libxml2 up to version 2.9.1 and is an XML External Entity (XXE) issue. The root cause is improper handling of external entities expansion unless an application developer uses xmlSAX2ResolveEntity or xmlSetExternalEntityLoader. Impact cited includes potential denial of servic...

6.8CVSS9AI score0.03609EPSS
Exploits1References15Affected Software1
Cvelist
Cvelist
added 2014/01/21 6:0 p.m.27 views

CVE-2013-0339

libxml2 through 2.9.1 does not properly handle external entities expansion unless an application developer uses the xmlSAX2ResolveEntity or xmlSetExternalEntityLoader function, which allows remote attackers to cause a denial of service resource consumption, send HTTP requests to intranet servers,...

9.1AI score0.03609EPSS
Exploits1References15
OpenVAS
OpenVAS
added 2013/08/01 12:0 a.m.31 views

Ubuntu Update for libxml2 USN-1904-1

Check for the Version of libxml2 OpenVAS Vulnerability Test $Id: gbubuntuUSN19041.nasl 8672 2018-02-05 16:39:18Z teissa $ Ubuntu Update for libxml2 USN-1904-1 Authors: System Generated Check Copyright: Copyright c 2013 Greenbone Networks GmbH, http://www.greenbone.net This program is free softwar...

6.8CVSS8.4AI score0.04733EPSS
Exploits1References2
OpenVAS
OpenVAS
added 2013/08/01 12:0 a.m.31 views

Ubuntu: Security Advisory (USN-1904-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2013 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

6.8CVSS8.4AI score0.04733EPSS
Exploits1References2
OpenVAS
OpenVAS
added 2013/08/01 12:0 a.m.41 views

Ubuntu: Security Advisory (USN-1904-2)

The remote host is missing an update for the SPDX-FileCopyrightText: 2013 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

6.8CVSS8.4AI score0.04733EPSS
Exploits1References3
Tenable Nessus
Tenable Nessus
added 2013/07/18 12:0 a.m.33 views

Ubuntu 10.04 LTS / 12.04 LTS / 12.10 / 13.04 : libxml2 regression (USN-1904-2)

USN-1904-1 fixed vulnerabilities in libxml2. The update caused a regression for certain users. This update fixes the problem. We apologize for the inconvenience. It was discovered that libxml2 would load XML external entities by default. If a user or automated system were tricked into opening a...

6.8CVSS7.1AI score0.04733EPSS
Exploits1References3
Ubuntu
Ubuntu
added 2013/07/17 1:15 p.m.52 views

USN-1904-2: libxml2 regression

USN-1904-1 fixed vulnerabilities in libxml2. The update caused a regression for certain users. This update fixes the problem. We apologize for the inconvenience. Original advisory details: It was discovered that libxml2 would load XML external entities by default. If a user or automated system we...

7.2AI score
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2013/07/16 12:0 a.m.25 views

Ubuntu 10.04 LTS / 12.04 LTS / 12.10 / 13.04 : libxml2 vulnerabilities (USN-1904-1)

It was discovered that libxml2 would load XML external entities by default. If a user or automated system were tricked into opening a specially crafted document, an attacker could possibly obtain access to arbitrary files or cause resource consumption. This issue only affected Ubuntu 10.04 LTS,...

6.8CVSS7.1AI score0.04733EPSS
Exploits1References3
Ubuntu
Ubuntu
added 2013/07/15 1:6 p.m.52 views

USN-1904-1: libxml2 vulnerabilities

It was discovered that libxml2 would load XML external entities by default. If a user or automated system were tricked into opening a specially crafted document, an attacker could possibly obtain access to arbitrary files or cause resource consumption. This issue only affected Ubuntu 10.04 LTS,...

6.8CVSS7.2AI score0.04733EPSS
Exploits1
Tenable Nessus
Tenable Nessus
added 2013/05/03 12:0 a.m.41 views

SuSE 10 Security Update : libxml2 (ZYPP Patch Number 8513)

libxml2 has been updated to fix entity expansion problems : - Internal entity expansion within XML was not bounded, leading to simple small XML files being able to cause 'out of memory' denial of service conditions. CVE-2013-0338 %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The text...

6.8CVSS7AI score0.03609EPSS
Exploits1References4
securityvulns
securityvulns
added 2013/04/08 12:0 a.m.51 views

[SECURITY] [DSA 2652-1] libxml2 security update

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 - ------------------------------------------------------------------------- Debian Security Advisory DSA-2652-1 [email protected] http://www.debian.org/security/ Michael Gilbert March 24, 2013 http://www.debian.org/security/faq -...

6.8CVSS0.9AI score0.03609EPSS
Exploits1
Debian
Debian
added 2013/03/26 5:40 a.m.20 views

[SECURITY] [DSA 2652-1] libxml2 security update

------------------------------------------------------------------------- Debian Security Advisory DSA-2652-1 [email protected] http://www.debian.org/security/ Michael Gilbert March 24, 2013 http://www.debian.org/security/faq -...

6.8CVSS8.5AI score0.03609EPSS
Exploits1
OpenVAS
OpenVAS
added 2013/03/23 12:0 a.m.22 views

Debian: Security Advisory (DSA-2652-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2013 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

6.8CVSS9.6AI score0.03609EPSS
Exploits1References3
UbuntuCve
UbuntuCve
added 2013/02/26 12:0 a.m.26 views

CVE-2013-0339

libxml2 through 2.9.1 does not properly handle external entities expansion unless an application developer uses the xmlSAX2ResolveEntity or xmlSetExternalEntityLoader function, which allows remote attackers to cause a denial of service resource consumption, send HTTP requests to intranet servers,...

6.8CVSS7.2AI score0.03609EPSS
Exploits1References2
Rows per page
Query Builder