Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact
6.8
CVSSv2

CVE-2012-2807

Published: 27/06/2012 Updated: 07/11/2023
CVSS v2 Base Score: 6.8 | Impact Score: 6.4 | Exploitability Score: 8.6
VMScore: 605
Vector: AV:N/AC:M/Au:N/C:P/I:P/A:P
Subscribe to Chrome

Vulnerability Summary

Multiple integer overflows in libxml2, as used in Google Chrome prior to 20.0.1132.43 and other products, on 64-bit Linux platforms allow remote malicious users to cause a denial of service or possibly have unspecified other impact via unknown vectors.

Vulnerable Product Search on Vulmon Subscribe to Product

google chrome

google chrome 20.0.1132.0

google chrome 20.0.1132.1

google chrome 20.0.1132.2

google chrome 20.0.1132.3

google chrome 20.0.1132.4

google chrome 20.0.1132.5

google chrome 20.0.1132.6

google chrome 20.0.1132.7

google chrome 20.0.1132.8

google chrome 20.0.1132.9

google chrome 20.0.1132.10

google chrome 20.0.1132.11

google chrome 20.0.1132.12

google chrome 20.0.1132.13

google chrome 20.0.1132.14

google chrome 20.0.1132.15

google chrome 20.0.1132.16

google chrome 20.0.1132.17

google chrome 20.0.1132.18

google chrome 20.0.1132.19

google chrome 20.0.1132.20

google chrome 20.0.1132.21

google chrome 20.0.1132.22

google chrome 20.0.1132.23

google chrome 20.0.1132.24

google chrome 20.0.1132.25

google chrome 20.0.1132.26

google chrome 20.0.1132.27

google chrome 20.0.1132.28

google chrome 20.0.1132.29

google chrome 20.0.1132.30

google chrome 20.0.1132.31

google chrome 20.0.1132.32

google chrome 20.0.1132.33

google chrome 20.0.1132.34

google chrome 20.0.1132.35

google chrome 20.0.1132.36

google chrome 20.0.1132.37

google chrome 20.0.1132.38

google chrome 20.0.1132.39

google chrome 20.0.1132.40

google chrome 20.0.1132.41

apple iphone os 6.1.2

apple iphone os 3.0

apple iphone os 3.2

apple iphone os 3.1.3

apple iphone os 1.0.2

apple iphone os 4.3.2

apple iphone os 4.0.2

apple iphone os

apple iphone os 2.2

apple iphone os 1.1.1

apple iphone os 6.1.3

apple iphone os 5.1

apple iphone os 4.2.8

apple iphone os 6.0.2

apple iphone os 4.1

apple iphone os 2.0.0

apple iphone os 3.1.2

apple iphone os 3.0.1

apple iphone os 4.3.1

apple iphone os 4.2.5

apple iphone os 1.1.2

apple iphone os 3.1

apple iphone os 1.1.3

apple iphone os 1.1.0

apple iphone os 1.0.1

apple iphone os 2.1

apple iphone os 6.0

apple iphone os 4.3.5

apple iphone os 6.1

apple iphone os 4.2.1

apple iphone os 1.1.5

apple iphone os 4.0.1

apple iphone os 4.3.3

apple iphone os 5.0.1

apple iphone os 2.1.1

apple iphone os 1.1.4

apple iphone os 5.0

apple iphone os 1.0.0

apple iphone os 5.1.1

apple iphone os 2.0.2

apple iphone os 2.0

apple iphone os 2.0.1

apple iphone os 4.0

apple iphone os 4.3.0

apple iphone os 2.2.1

apple iphone os 3.2.1

apple iphone os 3.2.2

apple iphone os 6.0.1

Vendor Advisories

Red Hat: Moderate: libxml2 security update
Synopsis Moderate: libxml2 security update Type/Severity Security Advisory: Moderate Topic Updated libxml2 packages that fix multiple security issues are nowavailable for Red Hat Enterprise Linux 5 and 6The Red Hat Security Response Team has rated this update as having moderatesecurity impact Common Vulne ...
Ubuntu Security Notice: libxml2 vulnerability
Applications using libxml2 could be made to crash or run programs as your login if they opened a specially crafted file ...
Debian CVElist Bug Report Logs: CVE-2012-2825
Debian Bug report logs - #679283 CVE-2012-2825 Package: libxslt; Maintainer for libxslt is Debian XML/SGML Group <debian-xml-sgml-pkgs@listsaliothdebianorg>; Reported by: Moritz Muehlenhoff <muehlenhoff@univentionde> Date: Wed, 27 Jun 2012 15:21:09 UTC Severity: grave Tags: security Fixed in versions libxslt/11 ...
Debian CVElist Bug Report Logs: CVE-2012-2807
Debian Bug report logs - #679280 CVE-2012-2807 Package: libxml2; Maintainer for libxml2 is Debian XML/SGML Group <debian-xml-sgml-pkgs@listsaliothdebianorg>; Source for libxml2 is src:libxml2 (PTS, buildd, popcon) Reported by: Moritz Muehlenhoff <muehlenhoff@univentionde> Date: Wed, 27 Jun 2012 15:18:01 UTC Seve ...
Amazon Linux AMI: ALAS-2012-134
Multiple integer overflow flaws, leading to heap-based buffer overflows, were found in the way libxml2 handled documents that enable entity expansion A remote attacker could provide a large, specially-crafted XML file that, when opened in an application linked against libxml2, would cause the application to crash or, potentially, execute arbitrary ...

References

CWE-189http://lists.apple.com/archives/security-announce/2013/Oct/msg00009.htmlhttps://hermes.opensuse.org/messages/15075728http://lists.opensuse.org/opensuse-security-announce/2013-11/msg00002.htmlhttp://support.apple.com/kb/HT6001http://googlechromereleases.blogspot.com/2012/06/stable-channel-update_26.htmlhttp://secunia.com/advisories/50658https://hermes.opensuse.org/messages/15375990http://www.securityfocus.com/bid/54718http://secunia.com/advisories/54886http://support.apple.com/kb/HT5934http://secunia.com/advisories/55568http://www.ubuntu.com/usn/USN-1587-1http://www.debian.org/security/2012/dsa-2521http://www.mandriva.com/security/advisories?name=MDVSA-2012:126http://code.google.com/p/chromium/issues/detail?id=129930http://secunia.com/advisories/50800http://www.mandriva.com/security/advisories?name=MDVSA-2013:056http://lists.apple.com/archives/security-announce/2013/Sep/msg00006.htmlhttps://access.redhat.com/errata/RHSA-2012:1288https://usn.ubuntu.com/1587-1/https://nvd.nist.gov
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-3581reflected XSSCVE-2024-26925CVE-2024-27956LFICVE-2024-3607CVE-2024-3107CVE-2024-3295SQL
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook