Family: Fedora Local Security Checks --> Category: infos
Fedora Core 1 2004-087: libxml2 Vulnerability Scan
Vulnerability Scan Summary
Check for the version of the libxml2 package
Detailed Explanation for this Vulnerability Test
The remote host is missing the patch for the advisory FEDORA-2004-087 (libxml2).
This library allows to manipulate XML files. It includes support
to read, modify and write XML and HTML files. There is DTDs support
this includes parsing and validation even with complex DtDs, either
at parse time or later once the document has been modified. The output
can be a simple SAX stream or and in-memory DOM like representations.
In this case one can use the built-in XPath and XPointer implementation
to select subnodes or ranges. A flexible Input/Output mechanism is
available, with existing HTTP and FTP modules and combined to an
Updated libxml2 packages are available to fix an overflow when parsing
the URI for remote resources.
Solution : http://www.fedoranews.org/updates/FEDORA-2004-087.shtml
Threat Level: High
Click HERE for more information and discussions on this network vulnerability scan.