CVE-2010-4008 vulnerability in Apache and Other Products
Published on November 17, 2010

libxml2 before 2.7.8, as used in Google Chrome before 7.0.517.44, Apple Safari 5.0.2 and earlier, and other products, reads from invalid memory locations during processing of malformed XPath expressions, which allows context-dependent attackers to cause a denial of service (application crash) via a crafted XML document.

Vendor Advisory Vendor Advisory Vendor Advisory Vendor Advisory Vendor Advisory Vendor Advisory Vendor Advisory Vendor Advisory Vendor Advisory Vendor Advisory Vendor Advisory Vendor Advisory Vendor Advisory NVD

Products Associated with CVE-2010-4008

You can be notified by email with stack.watch whenever vulnerabilities like CVE-2010-4008 are published in these products:

Apache OpenOffice

Apple iTunes

Apple Safari

Google Chrome

Xmlsoft Libxml2

Apple iOS

Apple macOS

Canonical Ubuntu Linux

Debian Linux

OpenSuse

Red Hat Enterprise Linux Desktop

Red Hat Enterprise Linux Server

Red Hat Enterprise Linux Server Eus

Red Hat Enterprise Linux Workstation

Suse Linux Enterprise Server

Exploit Probability

EPSS

0.76%

Percentile

72.98%

EPSS (Exploit Prediction Scoring System) scores estimate the probability that a vulnerability will be exploited in the wild within the next 30 days. The percentile shows you how this score compares to all other vulnerabilities.

CVE-2010-4008 vulnerability in Apache and Other ProductsPublished on November 17, 2010

Products Associated with CVE-2010-4008

Exploit Probability

CVE-2010-4008 vulnerability in Apache and Other Products
Published on November 17, 2010