CVEDB API

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2011-1944

Integer overflow in xpath.c in libxml2 2.6.x through 2.6.32 and 2.7.x through 2.7.8, and libxml 1.8.16 and earlier, allows context-dependent attackers to cause a denial of service (crash) and possibly execute arbitrary code via a crafted XML file that triggers a heap-based buffer overflow when adding a new namespace node, related to handling of XPath expressions.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.226

EPSS Ranking 95.5%

CVSS Severity

CVSS v2 Score 9.3

References

Products affected by CVE-2011-1944

Xmlsoft » Libxml2 » Version: 2.6.0

cpe:2.3:a:xmlsoft:libxml2:2.6.0
Xmlsoft » Libxml2 » Version: 2.6.1

cpe:2.3:a:xmlsoft:libxml2:2.6.1
Xmlsoft » Libxml2 » Version: 2.6.11

cpe:2.3:a:xmlsoft:libxml2:2.6.11
Xmlsoft » Libxml2 » Version: 2.6.12

cpe:2.3:a:xmlsoft:libxml2:2.6.12
Xmlsoft » Libxml2 » Version: 2.6.13

cpe:2.3:a:xmlsoft:libxml2:2.6.13
Xmlsoft » Libxml2 » Version: 2.6.14

cpe:2.3:a:xmlsoft:libxml2:2.6.14
Xmlsoft » Libxml2 » Version: 2.6.16

cpe:2.3:a:xmlsoft:libxml2:2.6.16
Xmlsoft » Libxml2 » Version: 2.6.17

cpe:2.3:a:xmlsoft:libxml2:2.6.17
Xmlsoft » Libxml2 » Version: 2.6.18

cpe:2.3:a:xmlsoft:libxml2:2.6.18
Xmlsoft » Libxml2 » Version: 2.6.2

cpe:2.3:a:xmlsoft:libxml2:2.6.2
Xmlsoft » Libxml2 » Version: 2.6.20

cpe:2.3:a:xmlsoft:libxml2:2.6.20
Xmlsoft » Libxml2 » Version: 2.6.22

cpe:2.3:a:xmlsoft:libxml2:2.6.22
Xmlsoft » Libxml2 » Version: 2.6.26

cpe:2.3:a:xmlsoft:libxml2:2.6.26
Xmlsoft » Libxml2 » Version: 2.6.27

cpe:2.3:a:xmlsoft:libxml2:2.6.27
Xmlsoft » Libxml2 » Version: 2.6.3

cpe:2.3:a:xmlsoft:libxml2:2.6.3
Xmlsoft » Libxml2 » Version: 2.6.30

cpe:2.3:a:xmlsoft:libxml2:2.6.30
Xmlsoft » Libxml2 » Version: 2.6.32

cpe:2.3:a:xmlsoft:libxml2:2.6.32
Xmlsoft » Libxml2 » Version: 2.6.4

cpe:2.3:a:xmlsoft:libxml2:2.6.4
Xmlsoft » Libxml2 » Version: 2.6.5

cpe:2.3:a:xmlsoft:libxml2:2.6.5
Xmlsoft » Libxml2 » Version: 2.6.6

cpe:2.3:a:xmlsoft:libxml2:2.6.6
Xmlsoft » Libxml2 » Version: 2.6.7

cpe:2.3:a:xmlsoft:libxml2:2.6.7
Xmlsoft » Libxml2 » Version: 2.6.8

cpe:2.3:a:xmlsoft:libxml2:2.6.8
Xmlsoft » Libxml2 » Version: 2.6.9

cpe:2.3:a:xmlsoft:libxml2:2.6.9
Xmlsoft » Libxml2 » Version: 2.7.0

cpe:2.3:a:xmlsoft:libxml2:2.7.0
Xmlsoft » Libxml2 » Version: 2.7.1

cpe:2.3:a:xmlsoft:libxml2:2.7.1
Xmlsoft » Libxml2 » Version: 2.7.2

cpe:2.3:a:xmlsoft:libxml2:2.7.2
Xmlsoft » Libxml2 » Version: 2.7.3

cpe:2.3:a:xmlsoft:libxml2:2.7.3
Xmlsoft » Libxml2 » Version: 2.7.4

cpe:2.3:a:xmlsoft:libxml2:2.7.4
Xmlsoft » Libxml2 » Version: 2.7.5

cpe:2.3:a:xmlsoft:libxml2:2.7.5
Xmlsoft » Libxml2 » Version: 2.7.6

cpe:2.3:a:xmlsoft:libxml2:2.7.6
Xmlsoft » Libxml2 » Version: 2.7.7

cpe:2.3:a:xmlsoft:libxml2:2.7.7
Xmlsoft » Libxml2 » Version: 2.7.8

cpe:2.3:a:xmlsoft:libxml2:2.7.8
Xmlsoft » Libxml » Version: Any

cpe:2.3:a:xmlsoft:libxml:*
Xmlsoft » Libxml » Version: 1.5.0

cpe:2.3:a:xmlsoft:libxml:1.5.0
Xmlsoft » Libxml » Version: 1.6.0

cpe:2.3:a:xmlsoft:libxml:1.6.0
Xmlsoft » Libxml » Version: 1.6.1

cpe:2.3:a:xmlsoft:libxml:1.6.1
Xmlsoft » Libxml » Version: 1.6.2

cpe:2.3:a:xmlsoft:libxml:1.6.2
Xmlsoft » Libxml » Version: 1.7.0

cpe:2.3:a:xmlsoft:libxml:1.7.0
Xmlsoft » Libxml » Version: 1.7.1

cpe:2.3:a:xmlsoft:libxml:1.7.1
Xmlsoft » Libxml » Version: 1.7.2

cpe:2.3:a:xmlsoft:libxml:1.7.2
Xmlsoft » Libxml » Version: 1.7.3

cpe:2.3:a:xmlsoft:libxml:1.7.3
Xmlsoft » Libxml » Version: 1.7.4

cpe:2.3:a:xmlsoft:libxml:1.7.4
Xmlsoft » Libxml » Version: 1.8.0

cpe:2.3:a:xmlsoft:libxml:1.8.0
Xmlsoft » Libxml » Version: 1.8.1

cpe:2.3:a:xmlsoft:libxml:1.8.1
Xmlsoft » Libxml » Version: 1.8.10

cpe:2.3:a:xmlsoft:libxml:1.8.10
Xmlsoft » Libxml » Version: 1.8.11

cpe:2.3:a:xmlsoft:libxml:1.8.11
Xmlsoft » Libxml » Version: 1.8.12

cpe:2.3:a:xmlsoft:libxml:1.8.12
Xmlsoft » Libxml » Version: 1.8.13

cpe:2.3:a:xmlsoft:libxml:1.8.13
Xmlsoft » Libxml » Version: 1.8.14

cpe:2.3:a:xmlsoft:libxml:1.8.14
Xmlsoft » Libxml » Version: 1.8.15

cpe:2.3:a:xmlsoft:libxml:1.8.15
Xmlsoft » Libxml » Version: 1.8.2

cpe:2.3:a:xmlsoft:libxml:1.8.2
Xmlsoft » Libxml » Version: 1.8.3

cpe:2.3:a:xmlsoft:libxml:1.8.3
Xmlsoft » Libxml » Version: 1.8.4

cpe:2.3:a:xmlsoft:libxml:1.8.4
Xmlsoft » Libxml » Version: 1.8.5

cpe:2.3:a:xmlsoft:libxml:1.8.5
Xmlsoft » Libxml » Version: 1.8.6

cpe:2.3:a:xmlsoft:libxml:1.8.6
Xmlsoft » Libxml » Version: 1.8.7

cpe:2.3:a:xmlsoft:libxml:1.8.7
Xmlsoft » Libxml » Version: 1.8.8

cpe:2.3:a:xmlsoft:libxml:1.8.8
Xmlsoft » Libxml » Version: 1.8.9

cpe:2.3:a:xmlsoft:libxml:1.8.9

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2011-1944

Products

Pricing

Contact Us