CVE-2004-0110

CVE Database · CVE-2004-0110

CVE-2004-0110

· N/AModified

CVSS v3.1

N/A

EPSS

24.23%

Published

Mar 15, 2004

Modified

Apr 15, 2026

Public PoC / Exploit (2)

All weaponized →

Exploit-DBlibxml 2.6.12 nanoftp - Local Buffer Overflow TrickestTrickest PoC index

Links to public security research (Exploit-DB, Nuclei, Trickest, GitHub) for defensive use only.

Description

Buffer overflow in the (1) nanohttp or (2) nanoftp modules in XMLSoft Libxml 2 (Libxml2) 2.6.0 through 2.6.5 allow remote attackers to execute arbitrary code via a long URL.

Affected Products (14)

sgi · propackvulnerable

xmlsoft · libxmlvulnerable

xmlsoft · libxml2vulnerable

· libxml2

References (20)

http://marc.info/?l=bugtraq&m=107851606605420&w=2

http://marc.info/?l=bugtraq&m=107860178228804&w=2

http://rhn.redhat.com/errata/RHSA-2004-090.html

PatchVendor Advisory

http://secunia.com/advisories/10958/

http://security.gentoo.org/glsa/glsa-200403-01.xml

http://www.ciac.org/ciac/bulletins/o-086.shtml

http://www.debian.org/security/2004/dsa-455

http://www.kb.cert.org/vuls/id/493966

US Government Resource

http://www.novell.com/linux/security/advisories/2005_01_sr.html

http://www.redhat.com/support/errata/RHSA-2004-091.html

KEV Catalog EPSS Scores Vendors All CVEs