Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2004-0658

Overview

Vulnerability Score 7.2 7.2
CVE Id CVE-2004-0658
Last Modified 10 Sep 2008 03:27:11
Published 06 Aug 2004 12:00:00
Confidentiality Impact COMPLETE COMPLETE
Integrity Impact COMPLETE COMPLETE
Availability Impact COMPLETE COMPLETE
Access Vector LOCAL
Access Complexity LOW
Authentication NONE

CVE-2004-0658

Summary

Integer overflow in the hpsb_alloc_packet function (incorrectly reported as alloc_hpsb_packet) in IEEE 1394 (Firewire) driver 2.4 and 2.6 allows local users to cause a denial of service (crash) and possibly execute arbitrary code via the functions (1) raw1394_write, (2) state_connected, (3) handle_remote_request, or (4) hpsb_make_writebpacket.

Vulnerable Systems

Operating System

  • Linux Kernel 2.4.0

  • Linux Kernel 2.4.1

  • Linux Kernel 2.4.10

  • Linux Kernel 2.4.11

  • Linux Kernel 2.4.12

  • Linux Kernel 2.4.13

  • Linux Kernel 2.4.14

  • Linux Kernel 2.4.15

  • Linux Kernel 2.4.16

  • Linux Kernel 2.4.17

  • Linux Kernel 2.4.18

  • Linux Kernel 2.4.19

  • Linux Kernel 2.4.2

  • Linux Kernel 2.4.20

  • Linux Kernel 2.4.21

  • Linux Kernel 2.4.22

  • Linux Kernel 2.4.23

  • Linux Kernel 2.4.23 Ow2

  • Linux Kernel 2.4.24

  • Linux Kernel 2.4.24 Ow1

  • Linux Kernel 2.4.25

  • Linux Kernel 2.4.26

  • Linux Kernel 2.4.27

  • Linux Kernel 2.4.3

  • Linux Kernel 2.4.4

  • Linux Kernel 2.4.5

  • Linux Kernel 2.4.6

  • Linux Kernel 2.4.7

  • Linux Kernel 2.4.8

  • Linux Kernel 2.4.9

  • Linux Kernel 2.5.0

  • Linux Kernel 2.5.1

  • Linux Kernel 2.5.10

  • Linux Kernel 2.5.11

  • Linux Kernel 2.5.12

  • Linux Kernel 2.5.13

  • Linux Kernel 2.5.14

  • Linux Kernel 2.5.15

  • Linux Kernel 2.5.16

  • Linux Kernel 2.5.17

  • Linux Kernel 2.5.18

  • Linux Kernel 2.5.19

  • Linux Kernel 2.5.2

  • Linux Kernel 2.5.20

  • Linux Kernel 2.5.21

  • Linux Kernel 2.5.22

  • Linux Kernel 2.5.23

  • Linux Kernel 2.5.24

  • Linux Kernel 2.5.25

  • Linux Kernel 2.5.26

  • Linux Kernel 2.5.27

  • Linux Kernel 2.5.28

  • Linux Kernel 2.5.29

  • Linux Kernel 2.5.3

  • Linux Kernel 2.5.30

  • Linux Kernel 2.5.31

  • Linux Kernel 2.5.32

  • Linux Kernel 2.5.33

  • Linux Kernel 2.5.34

  • Linux Kernel 2.5.35

  • Linux Kernel 2.5.36

  • Linux Kernel 2.5.37

  • Linux Kernel 2.5.38

  • Linux Kernel 2.5.39

  • Linux Kernel 2.5.4

  • Linux Kernel 2.5.40

  • Linux Kernel 2.5.41

  • Linux Kernel 2.5.42

  • Linux Kernel 2.5.43

  • Linux Kernel 2.5.44

  • Linux Kernel 2.5.45

  • Linux Kernel 2.5.46

  • Linux Kernel 2.5.47

  • Linux Kernel 2.5.48

  • Linux Kernel 2.5.49

  • Linux Kernel 2.5.5

  • Linux Kernel 2.5.50

  • Linux Kernel 2.5.51

  • Linux Kernel 2.5.52

  • Linux Kernel 2.5.53

  • Linux Kernel 2.5.54

  • Linux Kernel 2.5.55

  • Linux Kernel 2.5.56

  • Linux Kernel 2.5.57

  • Linux Kernel 2.5.58

  • Linux Kernel 2.5.59

  • Linux Kernel 2.5.6

  • Linux Kernel 2.5.60

  • Linux Kernel 2.5.61

  • Linux Kernel 2.5.62

  • Linux Kernel 2.5.63

  • Linux Kernel 2.5.64

  • Linux Kernel 2.5.65

  • Linux Kernel 2.5.66

  • Linux Kernel 2.5.67

  • Linux Kernel 2.5.68

  • Linux Kernel 2.5.69

  • Linux Kernel 2.5.7

  • Linux Kernel 2.5.8

  • Linux Kernel 2.5.9

  • Linux Kernel 2.6 Test9 Cvs

  • Linux Kernel 2.6.0

  • Linux Kernel 2.6.1

  • Linux Kernel 2.6.2

  • Linux Kernel 2.6.3

  • Linux Kernel 2.6.4

  • Linux Kernel 2.6.5

  • Linux Kernel 2.6.6

  • Linux Kernel 2.6.7


References

XF - linux-1394-integer-bo(16480)

BUGTRAQ - 20040622 linux kernel IEEE1394(Firewire) driver integer overflow


Last Updated: 27 May 2016 10:38:42