CVE-2006-10003: XML::Parser versions through 2.47 for Perl has an off-by-one heap buffer overflow in st_serial_stack
Published Mar 19, 2026
·Updated
XML::Parser versions through 2.47 for Perl has an off-by-one heap buffer overflow in st_serial_stack
Affected Software
3 affected componentsFixes available
Remediation
Information
Apply the patch that has been publicly available since 2006-06-13 or upgrade to version 2.48 or later when it is released.
Patch Available
Event History
Mar 19, 2026
CVE Published
via MITRE·11:08 AM
Data Sourced
via MITRE·11:08 AM
RemedyDescriptionWeakness
Data Sourced
via Red Hat·12:02 PM
DescriptionSeverityAffected Software
Data Sourced
via NVD·12:16 PM
RemedyDescriptionSeverityWeaknessAffected Software
Mar 20, 2026
Data Sourced
via Microsoft·08:04 AM
DescriptionSeverityWeaknessAffected Software
Updated
via Microsoft·08:04 AM
DescriptionSeverity
Frequently Asked Questions
1
What is the severity of CVE-2006-10003?
CVE-2006-10003 is classified as a high severity vulnerability due to its potential for a heap buffer overflow.
2
How do I fix CVE-2006-10003?
To fix CVE-2006-10003, upgrade XML::Parser to version 2.47 or later.
3
What versions are affected by CVE-2006-10003?
CVE-2006-10003 affects all XML::Parser versions up to and including 2.47.
4
What type of vulnerability is CVE-2006-10003?
CVE-2006-10003 is an off-by-one heap buffer overflow vulnerability in the st_serial_stack.
5
Is CVE-2006-10003 exploitable remotely?
Yes, CVE-2006-10003 can potentially be exploited remotely, allowing attackers to manipulate memory.