exploitDog

CVE-2004-0418

Опубликовано: 06 авг. 2004

Источник: ubuntu

Приоритет: untriaged

CVSS2: 10

Описание

serve_notify in CVS 1.12.x through 1.12.8, and 1.11.x through 1.11.16, does not properly handle empty data lines, which may allow remote attackers to perform an "out-of-bounds" write for a single byte to execute arbitrary code or modify critical program data.

Релиз	Статус	Примечание
dapper	released	1.12.9-17
devel	released	1.12.9-17
edgy	released	1.12.9-17
feisty	released	1.12.9-17
upstream	needs-triage

Показывать по

Ссылки на источники

https://www.cve.org/CVERecord?id=CVE-2004-0418

10 Critical

CVSS2

Связанные уязвимости

CVE-2004-0418

redhat

около 21 года назад

serve_notify in CVS 1.12.x through 1.12.8, and 1.11.x through 1.11.16, does not properly handle empty data lines, which may allow remote attackers to perform an "out-of-bounds" write for a single byte to execute arbitrary code or modify critical program data.

CVE-2004-0418

nvd

почти 21 год назад

serve_notify in CVS 1.12.x through 1.12.8, and 1.11.x through 1.11.16, does not properly handle empty data lines, which may allow remote attackers to perform an "out-of-bounds" write for a single byte to execute arbitrary code or modify critical program data.

CVE-2004-0418

debian

почти 21 год назад

serve_notify in CVS 1.12.x through 1.12.8, and 1.11.x through 1.11.16, ...

GHSA-fv5v-25hp-gmw7

github

около 3 лет назад

serve_notify in CVS 1.12.x through 1.12.8, and 1.11.x through 1.11.16, does not properly handle empty data lines, which may allow remote attackers to perform an "out-of-bounds" write for a single byte to execute arbitrary code or modify critical program data.

10 Critical

CVSS2