Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2004-1076

Overview

Vulnerability Score 7.2 7.2
CVE Id CVE-2004-1076
Last Modified 05 Sep 2008 04:40:17
Published 10 Jan 2005 12:00:00
Confidentiality Impact COMPLETE COMPLETE
Integrity Impact COMPLETE COMPLETE
Availability Impact COMPLETE COMPLETE
Access Vector LOCAL
Access Complexity LOW
Authentication NONE

CVE-2004-1076

Summary

Multiple buffer overflows in the RtConfigLoad function in rt-config.c for Atari800 before 1.3.4 allow local users to execute arbitrary code via large values in the configuration file.

Vulnerable Systems

Operating System

  • Atari800 0.5.4

  • Atari800 0.6

  • Atari800 0.6.2

  • Atari800 0.7

  • Atari800 0.8.1

  • Atari800 0.8.2

  • Atari800 0.8.6

  • Atari800 0.8.7

  • Atari800 0.8.8

  • Atari800 0.8.9

  • Atari800 0.9

  • Atari800 0.9.1

  • Atari800 0.9.2

  • Atari800 0.9.3

  • Atari800 0.9.4

  • Atari800 0.9.5

  • Atari800 0.9.6

  • Atari800 0.9.7

  • Atari800 0.9.8

  • Atari800 0.9.9

  • Atari800 0.9.9a

  • Atari800 0.9.9b

  • Atari800 0.9.9c

  • Atari800 0.9.9d

  • Atari800 0.9.9e

  • Atari800 0.9.9f

  • Atari800 0.9.9g

  • Atari800 0.9.9h

  • Atari800 0.9.9i

  • Atari800 0.9.9j

  • Atari800 1.0

  • Atari800 1.0.1

  • Atari800 1.0.2

  • Atari800 1.0.3

  • Atari800 1.0.4

  • Atari800 1.0.5

  • Atari800 1.0.6

  • Atari800 1.0.7

  • Atari800 1.2

  • Atari800 1.2 Pre0

  • Atari800 1.2.1

  • Atari800 1.2.1 Pre0

  • Atari800 1.2.2

  • Atari800 1.2.3

  • Atari800 1.2.4

  • Atari800 1.2.5

  • Atari800 1.3

  • Debian Linux 3.0


References

BID - 11756

DEBIAN - DSA-609

BUGTRAQ - 20041126 Re: Atari800 - local root. (fwd)

BUGTRAQ - 20041125 Atari800 - local root.

OSVDB - 12610

SECUNIA - 13670

CONFIRM - http://cvs.sourceforge.net/viewcvs.py/atari800/atari800/DOC/ChangeLog?view=markup


Last Updated: 27 May 2016 10:38:53