CVE-2004-0109 — Vulnetix

Try Vulnetix Request Demo

CVE-2004-0109 PUBLISHED CVSS 4.599999904632568 MEDIUM

Buffer overflow in the ISO9660 file system component for Linux kernel 2.4.x, 2.5.x and 2.6.x, allows local users with physical access to overflow kernel memory and execute arbitrary code via a malformed CD containing a long symbolic link entry.

EPSS 0.16% · 36.7th percentile

Risk Scores

CVSS v2.0

4.599999904632568

EPSS Score

0.16%

36.7th percentile

Affected Products

Vendor	Product	Versions
linux	linux_kernel	2.4.0, 2.5.0, 2.6.0
n/a	n/a	n/a

Timeline

Apr 16, 2004 CVE Published
Feb 4, 2022 EPSS Score
Mar 28, 2022 EPSS Score
May 19, 2022 EPSS Score
Jul 10, 2022 EPSS Score
Sep 1, 2022 EPSS Score
Oct 23, 2022 EPSS Score
Dec 14, 2022 EPSS Score
Feb 4, 2023 EPSS Score
Mar 7, 2023 EPSS Score
Mar 28, 2023 EPSS Score
May 19, 2023 EPSS Score

References

linux-iso9660-bo(15866) vdb
11626 third-party-advisory
11464 third-party-advisory
RHSA-2004:105 vendor-advisory
O-127 third-party-advisory
11518 third-party-advisory
20040405-01-U vendor-advisory
2004-0020 vendor-advisory
DSA-482 vendor-advisory
11861 third-party-advisory
11362 third-party-advisory
oval:org.mitre.oval:def:940 vdb
DSA-495 vendor-advisory
RHSA-2004:183 vendor-advisory
DSA-479 vendor-advisory
12003 third-party-advisory
11891 third-party-advisory
SuSE-SA:2004:009 vendor-advisory
11469 third-party-advisory
11486 third-party-advisory

…and 23 more

Open in Interactive Console →