Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2004-0109

Overview

Vulnerability Score 4.6 4.6
CVE Id CVE-2004-0109
Last Modified 21 Aug 2010 12:19:34
Published 01 Jun 2004 12:00:00
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact PARTIAL PARTIAL
Availability Impact PARTIAL PARTIAL
Access Vector LOCAL
Access Complexity LOW
Authentication NONE

CVE-2004-0109

Summary

Buffer overflow in the ISO9660 file system component for Linux kernel 2.4.x, 2.5.x and 2.6.x, allows local users with physical access to overflow kernel memory and execute arbitrary code via a malformed CD containing a long symbolic link entry.

Vulnerable Systems

Operating System

  • Linux Kernel 2.4.0

  • Linux Kernel 2.5.0

  • Linux Kernel 2.6.0


References

ENGARDE - ESA-20040428-004

REDHAT - RHSA-2004:166

TRUSTIX - 2004-0020

SGI - 20040405-01-U

XF - linux-iso9660-bo(15866)

TURBO - TLSA-2004-14

BID - 10141

REDHAT - RHSA-2004:183

REDHAT - RHSA-2004:106

REDHAT - RHSA-2004:105

SUSE - SuSE-SA:2004:009

MISC - http://www.idefense.com/application/poi/display?id=101&type=vulnerabilities

DEBIAN - DSA-495

DEBIAN - DSA-491

DEBIAN - DSA-489

DEBIAN - DSA-482

DEBIAN - DSA-481

DEBIAN - DSA-480

DEBIAN - DSA-479

CIAC - O-127

CIAC - O-121

GENTOO - GLSA-200407-02

SECUNIA - 12003

SECUNIA - 11986

SECUNIA - 11891

SECUNIA - 11861

SECUNIA - 11626

SECUNIA - 11518

SECUNIA - 11494

SECUNIA - 11486

SECUNIA - 11470

SECUNIA - 11469

SECUNIA - 11464

SECUNIA - 11373

SECUNIA - 11362

SECUNIA - 11361

CONECTIVA - CLA-2004:846

SGI - 20040504-01-U

MANDRAKE - MDKSA-2004:029


Last Updated: 27 May 2016 10:38:28