Django REST framework

Lookup for vulnerabilities affecting packages.

Vulnerability_id VCID-gkg9-tbm1-mqb4

Summary Multiple buffer overflows in libXML 2.6.12 and 2.6.13 (libxml2), and possibly other versions, may allow remote attackers to execute arbitrary code via (1) a long FTP URL that is not properly handled by the xmlNanoFTPScanURL function, (2) a long proxy URL containing FTP data that is not properly handled by the xmlNanoFTPScanProxy function, and other overflows related to manipulation of DNS length values, including (3) xmlNanoFTPConnect, (4) xmlNanoHTTPConnectHost, and (5) xmlNanoHTTPConnectHost.

Aliases

alias	CVE-2004-0989

Fixed_packages

url	pkg:deb/debian/libxml2@2.6.11-5?distro=trixie
purl	pkg:deb/debian/libxml2@2.6.11-5?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/libxml2@2.6.11-5%3Fdistro=trixie

url pkg:deb/debian/libxml2@2.6.16-7sarge1

purl pkg:deb/debian/libxml2@2.6.16-7sarge1

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1esy-azbk-rkgn

vulnerability	VCID-1f8c-m3q3-yyea

vulnerability	VCID-1nax-e3jj-ryef

vulnerability	VCID-1sh8-bsk3-auct

vulnerability	VCID-1vsu-txd5-qbf3

vulnerability	VCID-1zr7-kx71-tkcr

vulnerability	VCID-2rbs-7dzf-wffv

vulnerability	VCID-2wkc-xqzc-e3g2

vulnerability	VCID-3ean-ys5t-bydz

vulnerability	VCID-3s6k-9cgk-dfd6

vulnerability	VCID-43m9-cg6h-nuet

vulnerability	VCID-4sg9-pjmx-6kfy

vulnerability	VCID-512y-x2fd-4uh5

vulnerability	VCID-5dmr-9sh2-w3hk

vulnerability	VCID-5er3-1kbw-33gt

vulnerability	VCID-5g9a-2484-rucp

vulnerability	VCID-5rs7-d9hu-rke7

vulnerability	VCID-5z25-mem7-hfcx

vulnerability	VCID-6bw6-4huq-dqex

vulnerability	VCID-6hc4-jdej-gkcp

vulnerability	VCID-6rnb-qe59-sbfy

vulnerability	VCID-6t8y-27ba-cfa2

vulnerability	VCID-7qqd-ze42-ayab

vulnerability	VCID-7x6g-x68k-tuc4

vulnerability	VCID-81dv-y5sg-9kgq

vulnerability	VCID-81t2-tsq4-x7ce

vulnerability	VCID-8719-hux3-fugq

vulnerability	VCID-8ufh-w88r-kuc3

vulnerability	VCID-9d2s-f8da-pkgg

vulnerability	VCID-9m3t-anwb-4fbx

vulnerability	VCID-9usm-m2ey-7qad

vulnerability	VCID-a611-3sqz-bkac

vulnerability	VCID-aj7d-6vcp-7yey

vulnerability	VCID-akrb-6bu8-nqfq

vulnerability	VCID-anzu-y37j-dbc2

vulnerability	VCID-aqrr-3ej8-ukaa

vulnerability	VCID-b2jx-djjd-rbdx

vulnerability	VCID-b37v-a8em-gkfr

vulnerability	VCID-bgcq-x9bd-83ap

vulnerability	VCID-bksc-y3j7-ufek

vulnerability	VCID-bm7f-1hbr-dyfx

vulnerability	VCID-bqh3-eze3-3qbv

vulnerability	VCID-brg4-2x5t-akac

vulnerability	VCID-c16x-s3zb-bbef

vulnerability	VCID-cgmw-k7dg-gbdw

vulnerability	VCID-ct17-yjud-f3a1

vulnerability	VCID-dmdw-gyj9-2ye5

vulnerability	VCID-ds9f-6ppp-5fax

vulnerability	VCID-e8w6-ax3x-wqan

vulnerability	VCID-eb5v-9a7f-xyf2

vulnerability	VCID-efx2-bpu9-z7a4

vulnerability	VCID-egft-crba-6ubx

vulnerability	VCID-eh92-k5tc-vyab

vulnerability	VCID-ezzm-sgz4-xbaa

vulnerability	VCID-f8jy-gtg6-x3f2

vulnerability	VCID-f8q4-hk9r-6be4

vulnerability	VCID-fda4-67cq-cqg4

vulnerability	VCID-fn1n-adz5-5fcy

vulnerability	VCID-frer-xevm-x7f7

vulnerability	VCID-fynm-ftmy-47eg

vulnerability	VCID-gfk4-86ze-3bdx

vulnerability	VCID-j98t-paam-97ec

vulnerability	VCID-jgtz-3gkg-dkbu

vulnerability	VCID-jn88-q5mn-37gz

vulnerability	VCID-jtkn-83hh-x3et

vulnerability	VCID-jwft-4pxx-5ydg

vulnerability	VCID-jxz3-ug52-cuhn

vulnerability	VCID-kb3k-r616-6fht

vulnerability	VCID-kg69-mhxs-tkcx

vulnerability	VCID-kg71-czqe-v7g5

vulnerability	VCID-kmvz-pynk-p7fn

vulnerability	VCID-kvkp-bve3-bqh7

vulnerability	VCID-m8d1-5qex-huf8

vulnerability	VCID-m91c-mfu9-bbbh

vulnerability	VCID-msku-25sz-rbeg

vulnerability	VCID-ne9k-m48b-13cu

vulnerability	VCID-p8us-th5q-yuey

vulnerability	VCID-pdus-4wua-fucn

vulnerability	VCID-pgfh-4snq-pbe6

vulnerability	VCID-q1rm-fyhj-kbfu

vulnerability	VCID-q736-5feg-q3h2

vulnerability	VCID-qa31-1xtw-ybdg

vulnerability	VCID-qv2p-47xc-eqc6

vulnerability	VCID-r3xn-5u5y-hbdw

vulnerability	VCID-rzc3-s4fv-7fhp

vulnerability	VCID-tn6n-x8d3-jqd3

vulnerability	VCID-tt91-8gv4-3qh9

vulnerability	VCID-tvkx-4rem-wydk

vulnerability	VCID-u795-5dzy-gkbs

vulnerability	VCID-ueh5-fv4d-a7a8

vulnerability	VCID-uehj-g87n-sfcf

vulnerability	VCID-up1g-mjyj-pub4

vulnerability	VCID-uqus-6prc-w7dh

vulnerability	VCID-ur8u-6xpb-g3g3

vulnerability	VCID-v22x-mq8p-8qc7

vulnerability	VCID-vfxe-t79s-3qbb

vulnerability	VCID-w156-x6fs-7baj

vulnerability	VCID-wqc9-2nup-r7d5

vulnerability	VCID-x53x-k5cn-4fhv

vulnerability	VCID-xse1-pmep-nqdc

100

vulnerability	VCID-xxpz-ak6z-5ufn

101

vulnerability	VCID-y6ed-mwdn-8bcv

102

vulnerability	VCID-y6zn-hwwh-23hp

103

vulnerability	VCID-y76b-6hzr-uqgb

104

vulnerability	VCID-y771-xrj9-6qca

105

vulnerability	VCID-yjn6-17qx-9ubc

106

vulnerability	VCID-zezc-xfmm-cqcg

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/libxml2@2.6.16-7sarge1

url pkg:deb/debian/libxml2@2.9.10%2Bdfsg-6.7%2Bdeb11u4?distro=trixie

purl pkg:deb/debian/libxml2@2.9.10%2Bdfsg-6.7%2Bdeb11u4?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-d47v-hstc-wqc1

vulnerability	VCID-k5ns-qsh8-9ufj

vulnerability	VCID-kqv4-tkg9-6ugb

vulnerability	VCID-p5kk-3yg6-yucb

vulnerability	VCID-rymj-pnfv-3khf

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/libxml2@2.9.10%252Bdfsg-6.7%252Bdeb11u4%3Fdistro=trixie

url pkg:deb/debian/libxml2@2.9.14%2Bdfsg-1.3~deb12u5?distro=trixie

purl pkg:deb/debian/libxml2@2.9.14%2Bdfsg-1.3~deb12u5?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-d47v-hstc-wqc1

vulnerability	VCID-k5ns-qsh8-9ufj

vulnerability	VCID-kqv4-tkg9-6ugb

vulnerability	VCID-p4u9-3nqe-v3ab

vulnerability	VCID-p5kk-3yg6-yucb

vulnerability	VCID-rymj-pnfv-3khf

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/libxml2@2.9.14%252Bdfsg-1.3~deb12u5%3Fdistro=trixie

url pkg:deb/debian/libxml2@2.12.7%2Bdfsg%2Breally2.9.14-2.1%2Bdeb13u2?distro=trixie

purl pkg:deb/debian/libxml2@2.12.7%2Bdfsg%2Breally2.9.14-2.1%2Bdeb13u2?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-d47v-hstc-wqc1

vulnerability	VCID-k5ns-qsh8-9ufj

vulnerability	VCID-kqv4-tkg9-6ugb

vulnerability	VCID-p4u9-3nqe-v3ab

vulnerability	VCID-p5kk-3yg6-yucb

vulnerability	VCID-rymj-pnfv-3khf

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/libxml2@2.12.7%252Bdfsg%252Breally2.9.14-2.1%252Bdeb13u2%3Fdistro=trixie

url pkg:deb/debian/libxml2@2.15.2%2Bdfsg-0.1?distro=trixie

purl pkg:deb/debian/libxml2@2.15.2%2Bdfsg-0.1?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-k5ns-qsh8-9ufj

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/libxml2@2.15.2%252Bdfsg-0.1%3Fdistro=trixie

url	pkg:deb/debian/libxml2@2.15.3%2Bdfsg-1?distro=trixie
purl	pkg:deb/debian/libxml2@2.15.3%2Bdfsg-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/libxml2@2.15.3%252Bdfsg-1%3Fdistro=trixie

Affected_packages

url pkg:deb/debian/libxml2@2.4.19-4woody2

purl pkg:deb/debian/libxml2@2.4.19-4woody2

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1esy-azbk-rkgn

vulnerability	VCID-1f8c-m3q3-yyea

vulnerability	VCID-1nax-e3jj-ryef

vulnerability	VCID-1sh8-bsk3-auct

vulnerability	VCID-1vsu-txd5-qbf3

vulnerability	VCID-1zr7-kx71-tkcr

vulnerability	VCID-2rbs-7dzf-wffv

vulnerability	VCID-2wkc-xqzc-e3g2

vulnerability	VCID-3ean-ys5t-bydz

vulnerability	VCID-3s6k-9cgk-dfd6

vulnerability	VCID-43m9-cg6h-nuet

vulnerability	VCID-4sg9-pjmx-6kfy

vulnerability	VCID-512y-x2fd-4uh5

vulnerability	VCID-5dmr-9sh2-w3hk

vulnerability	VCID-5er3-1kbw-33gt

vulnerability	VCID-5g9a-2484-rucp

vulnerability	VCID-5rs7-d9hu-rke7

vulnerability	VCID-5z25-mem7-hfcx

vulnerability	VCID-6bw6-4huq-dqex

vulnerability	VCID-6hc4-jdej-gkcp

vulnerability	VCID-6rnb-qe59-sbfy

vulnerability	VCID-6t8y-27ba-cfa2

vulnerability	VCID-7qqd-ze42-ayab

vulnerability	VCID-7x6g-x68k-tuc4

vulnerability	VCID-81dv-y5sg-9kgq

vulnerability	VCID-81t2-tsq4-x7ce

vulnerability	VCID-8719-hux3-fugq

vulnerability	VCID-8ufh-w88r-kuc3

vulnerability	VCID-9d2s-f8da-pkgg

vulnerability	VCID-9m3t-anwb-4fbx

vulnerability	VCID-9usm-m2ey-7qad

vulnerability	VCID-a611-3sqz-bkac

vulnerability	VCID-aj7d-6vcp-7yey

vulnerability	VCID-akrb-6bu8-nqfq

vulnerability	VCID-anzu-y37j-dbc2

vulnerability	VCID-aqrr-3ej8-ukaa

vulnerability	VCID-b2jx-djjd-rbdx

vulnerability	VCID-b37v-a8em-gkfr

vulnerability	VCID-bgcq-x9bd-83ap

vulnerability	VCID-bksc-y3j7-ufek

vulnerability	VCID-bm7f-1hbr-dyfx

vulnerability	VCID-bqh3-eze3-3qbv

vulnerability	VCID-brg4-2x5t-akac

vulnerability	VCID-c16x-s3zb-bbef

vulnerability	VCID-cgmw-k7dg-gbdw

vulnerability	VCID-ct17-yjud-f3a1

vulnerability	VCID-dmdw-gyj9-2ye5

vulnerability	VCID-ds9f-6ppp-5fax

vulnerability	VCID-e8w6-ax3x-wqan

vulnerability	VCID-eb5v-9a7f-xyf2

vulnerability	VCID-efx2-bpu9-z7a4

vulnerability	VCID-egft-crba-6ubx

vulnerability	VCID-eh92-k5tc-vyab

vulnerability	VCID-ezzm-sgz4-xbaa

vulnerability	VCID-f8jy-gtg6-x3f2

vulnerability	VCID-f8q4-hk9r-6be4

vulnerability	VCID-fda4-67cq-cqg4

vulnerability	VCID-fn1n-adz5-5fcy

vulnerability	VCID-frer-xevm-x7f7

vulnerability	VCID-fynm-ftmy-47eg

vulnerability	VCID-g4r1-u3v4-3bcr

vulnerability	VCID-gfk4-86ze-3bdx

vulnerability	VCID-gkg9-tbm1-mqb4

vulnerability	VCID-j98t-paam-97ec

vulnerability	VCID-jgtz-3gkg-dkbu

vulnerability	VCID-jn88-q5mn-37gz

vulnerability	VCID-jtkn-83hh-x3et

vulnerability	VCID-jwft-4pxx-5ydg

vulnerability	VCID-jxz3-ug52-cuhn

vulnerability	VCID-kb3k-r616-6fht

vulnerability	VCID-kg69-mhxs-tkcx

vulnerability	VCID-kg71-czqe-v7g5

vulnerability	VCID-kmvz-pynk-p7fn

vulnerability	VCID-kvkp-bve3-bqh7

vulnerability	VCID-m8d1-5qex-huf8

vulnerability	VCID-m91c-mfu9-bbbh

vulnerability	VCID-msku-25sz-rbeg

vulnerability	VCID-ne9k-m48b-13cu

vulnerability	VCID-p8us-th5q-yuey

vulnerability	VCID-pdus-4wua-fucn

vulnerability	VCID-pgfh-4snq-pbe6

vulnerability	VCID-q1rm-fyhj-kbfu

vulnerability	VCID-q736-5feg-q3h2

vulnerability	VCID-qa31-1xtw-ybdg

vulnerability	VCID-qv2p-47xc-eqc6

vulnerability	VCID-r3xn-5u5y-hbdw

vulnerability	VCID-rzc3-s4fv-7fhp

vulnerability	VCID-tn6n-x8d3-jqd3

vulnerability	VCID-tt91-8gv4-3qh9

vulnerability	VCID-tvkx-4rem-wydk

vulnerability	VCID-u795-5dzy-gkbs

vulnerability	VCID-ueh5-fv4d-a7a8

vulnerability	VCID-uehj-g87n-sfcf

vulnerability	VCID-up1g-mjyj-pub4

vulnerability	VCID-uqus-6prc-w7dh

vulnerability	VCID-ur8u-6xpb-g3g3

vulnerability	VCID-v22x-mq8p-8qc7

vulnerability	VCID-vfxe-t79s-3qbb

vulnerability	VCID-w156-x6fs-7baj

vulnerability	VCID-wqc9-2nup-r7d5

100

vulnerability	VCID-x53x-k5cn-4fhv

101

vulnerability	VCID-xse1-pmep-nqdc

102

vulnerability	VCID-xxpz-ak6z-5ufn

103

vulnerability	VCID-y6ed-mwdn-8bcv

104

vulnerability	VCID-y6zn-hwwh-23hp

105

vulnerability	VCID-y76b-6hzr-uqgb

106

vulnerability	VCID-y771-xrj9-6qca

107

vulnerability	VCID-yjn6-17qx-9ubc

108

vulnerability	VCID-zezc-xfmm-cqcg

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/libxml2@2.4.19-4woody2

url pkg:rpm/redhat/libxml@1:1.8.17-9?arch=2

purl pkg:rpm/redhat/libxml@1:1.8.17-9?arch=2

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-g4r1-u3v4-3bcr

vulnerability	VCID-gkg9-tbm1-mqb4

resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/libxml@1:1.8.17-9%3Farch=2

References

reference_url	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2004-0989.json
reference_id
reference_type
scores
url	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2004-0989.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2004-0989

reference_id

reference_type

scores

value	0.24274
scoring_system	epss
scoring_elements	0.96195
published_at	2026-06-04T12:55:00Z

value	0.24274
scoring_system	epss
scoring_elements	0.962
published_at	2026-06-05T12:55:00Z

value	0.24274
scoring_system	epss
scoring_elements	0.96202
published_at	2026-06-08T12:55:00Z

value	0.24274
scoring_system	epss
scoring_elements	0.96203
published_at	2026-06-07T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2004-0989

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2004-0989
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2004-0989

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=430645
reference_id	430645
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=430645

reference_url	https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/linux/remote/24704.c
reference_id	CVE-2004-0989;OSVDB-11179
reference_type	exploit
scores
url	https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/linux/remote/24704.c

reference_url	https://www.securityfocus.com/bid/11526/info
reference_id	CVE-2004-0989;OSVDB-11179
reference_type	exploit
scores
url	https://www.securityfocus.com/bid/11526/info

reference_url	https://access.redhat.com/errata/RHSA-2004:615
reference_id	RHSA-2004:615
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2004:615

reference_url	https://access.redhat.com/errata/RHSA-2004:650
reference_id	RHSA-2004:650
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2004:650

reference_url	https://usn.ubuntu.com/89-1/
reference_id	USN-89-1
reference_type
scores
url	https://usn.ubuntu.com/89-1/

Weaknesses

Exploits

date_added	2004-10-26
description	Libxml2 - Multiple Remote Stack Buffer Overflow Vulnerabilities
required_action	`null`
due_date	`null`
notes	`null`
known_ransomware_campaign_use	`true`
source_date_published	2004-10-26
exploit_type	remote
platform	linux
source_date_updated	2013-03-10
data_source	Exploit-DB
source_url	https://www.securityfocus.com/bid/11526/info

Severity_range_score null

Exploitability 2.0

Weighted_severity 0.2

Risk_score 0.4

Resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-gkg9-tbm1-mqb4

Vulnerability Instance