Buffer overflow in the (1) nanohttp or (2) nanoftp modules in XMLSoft Libxml 2 (Libxml2) 2.6.0 through 2.6.5 allow remote attackers to execute arbitrary code via a long URL.
| Name | Vendor | Start Version | End Version |
|---|---|---|---|
| Propack | Sgi | 2.3 (including) | 2.3 (including) |
| Propack | Sgi | 2.4 (including) | 2.4 (including) |
| Libxml | Xmlsoft | 1.8.17 (including) | 1.8.17 (including) |
| Libxml2 | Xmlsoft | 2.4.19 (including) | 2.4.19 (including) |
| Libxml2 | Xmlsoft | 2.4.23 (including) | 2.4.23 (including) |
| Libxml2 | Xmlsoft | 2.5.4 (including) | 2.5.4 (including) |
| Libxml2 | Xmlsoft | 2.5.10 (including) | 2.5.10 (including) |
| Libxml2 | Xmlsoft | 2.5.11 (including) | 2.5.11 (including) |
| Libxml2 | Xmlsoft | 2.6.0 (including) | 2.6.0 (including) |
| Libxml2 | Xmlsoft | 2.6.1 (including) | 2.6.1 (including) |
| Libxml2 | Xmlsoft | 2.6.2 (including) | 2.6.2 (including) |
| Libxml2 | Xmlsoft | 2.6.3 (including) | 2.6.3 (including) |
| Libxml2 | Xmlsoft | 2.6.4 (including) | 2.6.4 (including) |
| Libxml2 | Xmlsoft | 2.6.5 (including) | 2.6.5 (including) |
| Red Hat Enterprise Linux 3 | RedHat | libxml2-0:2.5.10-6 | * |
| Red Hat Enterprise Linux 3 | RedHat | libxml-1:1.8.17-9.2 | * |
| Red Hat Linux 9 | RedHat | * | |
| Libxml | Ubuntu | dapper | * |
| Libxml | Ubuntu | devel | * |
| Libxml | Ubuntu | edgy | * |
| Libxml | Ubuntu | feisty | * |