CVE-2011-1944

EPSS 23.69% · P96 Updated Feb 21, 2026

Get alerts for future matching vulnerabilitiesLog in to subscribe

I. Basic Information for CVE-2011-1944

Vulnerability Information

Have questions about the vulnerability? See if Shenlong's analysis helps!

Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.

Vulnerability Title

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Description

Integer overflow in xpath.c in libxml2 2.6.x through 2.6.32 and 2.7.x through 2.7.8, and libxml 1.8.16 and earlier, allows context-dependent attackers to cause a denial of service (crash) and possibly execute arbitrary code via a crafted XML file that triggers a heap-based buffer overflow when adding a new namespace node, related to handling of XPath expressions.

Source: NVD (National Vulnerability Database)

CVSS Information

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Type

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Title

Xmlsoft Libxml2 xpath.c整数溢出漏洞

Source: CNNVD (China National Vulnerability Database)

Vulnerability Description

Libxml2是GNOME项目组所研发的一个基于C语言的用来解析XML文档的函数库，它支持多种编码格式、Xpath解析、Well-formed和valid验证等。 Libxml2 2.6.x至2.6.32版本和2.7.x至2.7.8版本，libxml 1.8.16及之前版本中存在整数溢出漏洞。该漏洞源于在处理XPath节点集过程中重新分配xpath.c中的内存时产生的错误，当添加新名称空间节点时，远程攻击者可借助能够触发堆缓冲区溢出的XML文件导致拒绝服务并可能执行任意代码。

Source: CNNVD (China National Vulnerability Database)

CVSS Information

N/A

Source: CNNVD (China National Vulnerability Database)

Vulnerability Type

N/A

Source: CNNVD (China National Vulnerability Database)

Affected Products

Vendor	Product	Affected Versions	CPE	Subscribe
-	n/a	n/a	-

II. Public POCs for CVE-2011-1944

#	POC Description	Source Link	Shenlong Link

AI-Generated POCPremium

No public POC found.

III. Intelligence Information for CVE-2011-1944

请登录查看更多情报信息。

http://www.oracle.com/technetwork/topics/security/cpujan2015-1972971.htmlx_refsource_CONFIRM
http://support.apple.com/kb/HT5503x_refsource_CONFIRM
http://git.gnome.org/browse/libxml2/commit/?id=d7958b21e7f8c447a26bb2436f08402b2c308be4x_refsource_CONFIRM
https://bugzilla.redhat.com/show_bug.cgi?id=709747x_refsource_CONFIRM
http://scarybeastsecurity.blogspot.com/2011/05/libxml-vulnerability-and-interesting.htmlx_refsource_MISC
http://support.apple.com/kb/HT5281x_refsource_CONFIRM
http://www.osvdb.org/73248vdb-entryx_refsource_OSVDB
http://secunia.com/advisories/44711third-party-advisoryx_refsource_SECUNIA
http://www.securityfocus.com/bid/48056vdb-entryx_refsource_BID
http://www.debian.org/security/2011/dsa-2255vendor-advisoryx_refsource_DEBIAN
http://ubuntu.com/usn/usn-1153-1vendor-advisoryx_refsource_UBUNTU
http://h20000.www2.hp.com/bizsupport/TechSupport/Document.jsp?objectID=c03360041vendor-advisoryx_refsource_HP
http://www.mandriva.com/security/advisories?name=MDVSA-2011:131vendor-advisoryx_refsource_MANDRIVA
http://rhn.redhat.com/errata/RHSA-2013-0217.htmlvendor-advisoryx_refsource_REDHAT
http://www.redhat.com/support/errata/RHSA-2011-1749.htmlvendor-advisoryx_refsource_REDHAT
http://lists.fedoraproject.org/pipermail/package-announce/2011-July/062238.htmlvendor-advisoryx_refsource_FEDORA
http://lists.opensuse.org/opensuse-updates/2011-07/msg00035.htmlvendor-advisoryx_refsource_SUSE
http://lists.apple.com/archives/security-announce/2012/Sep/msg00003.htmlvendor-advisoryx_refsource_APPLE
http://lists.apple.com/archives/security-announce/2012/May/msg00001.htmlvendor-advisoryx_refsource_APPLE
http://www.openwall.com/lists/oss-security/2011/05/31/8mailing-listx_refsource_MLIST
https://nvd.nist.gov/vuln/detail/CVE-2011-1944

Same Patch Batch · n/a · 2011-09-02 · 19 CVEs total

CVE-2011-3385		WebsiteBaker跨站脚本攻击漏洞
CVE-2011-3134		TIBCO Spotfire Analytics Server和TIBCO Spotfire Server敏感信息泄露漏洞
CVE-2011-3133		TIBCO Spotfire Analytics Server和TIBCO Spotfire Server会话固定漏
CVE-2011-3132		TIBCO Spotfire Analytics Server和TIBCO Spotfire Server跨站脚本攻击漏洞
CVE-2011-2903		Rhythm Tcptrack命令行解析堆缓冲区溢出漏洞
CVE-2011-2763		LifeSize Room应用程序web界面输入验证漏洞
CVE-2011-2762		LifeSize Room应用程序web界面授权问题漏洞
CVE-2011-2594		KMPlayer播放列表处理堆缓冲区溢出漏洞
CVE-2011-0342		InduSoft Web Studio ISSymbol.ocx ISSymbol ActiveX控件多个缓冲区溢出漏洞
CVE-2011-0311		IBM Java类文件解析器拒绝服务漏洞
CVE-2009-5086		Juniper IDP Appliance Configuration Manager跨站脚本攻击漏洞
CVE-2011-3387		IBM Java类文件解析器拒绝服务漏洞
CVE-2011-3386		Medtronic Paradigm wireless insulin pump未明安全漏洞
CVE-2011-2176		NOME NetworkManager PolicyKit 'auth_admin'安全限制绕过漏洞
CVE-2011-1411		Shibboleth OpenSAML XML签名包装安全绕过漏洞
CVE-2011-0543		Fuse fusermount后置链接漏洞
CVE-2011-0542		Fuse fusermount任意目录卸载漏洞
CVE-2011-0541		Fuse后置链接漏洞

IV. Related Vulnerabilities

Same product: n/a

Same vendor: n/a

V. Comments for CVE-2011-1944

No comments yet

Goal Reached Thanks to every supporter — we hit 100%!

CVE-2011-1944

I. Basic Information for CVE-2011-1944

Vulnerability Information

Vulnerability Title

Vulnerability Description

CVSS Information

Vulnerability Type

Vulnerability Title

Vulnerability Description

CVSS Information

Vulnerability Type

Affected Products

II. Public POCs for CVE-2011-1944

III. Intelligence Information for CVE-2011-1944

Same Patch Batch · n/a · 2011-09-02 · 19 CVEs total

IV. Related Vulnerabilities

V. Comments for CVE-2011-1944

Leave a comment