CVE-2004-0535 — Vulnetix

Try Vulnetix Request Demo

CVE-2004-0535 PUBLISHED CVSS 2.0999999046325684 LOW

The e1000 driver for Linux kernel 2.4.26 and earlier does not properly initialize memory before using it, which allows local users to read portions of kernel memory. NOTE: this issue was originally incorrectly reported as a "buffer overflow" by some sources.

EPSS 0.13% · 32.4th percentile

Risk Scores

CVSS v2.0

2.0999999046325684

EPSS Score

0.13%

32.4th percentile

Affected Products

Vendor	Product	Versions
suse	suse_linux_firewall_live-cd
suse	suse_email_server	3.1, iii
n/a	n/a	n/a
mandrakesoft	mandrake_linux	9.1, 10.0, 10.0
suse	suse_linux_firewall_cd
conectiva	linux	9.0, 8.0
suse	suse_linux	9.1, 7, 8
suse	suse_linux_office_server
suse	suse_office_server
gentoo	linux	1.4
suse	suse_linux_connectivity_server
mandrakesoft	mandrake_multi_network_firewall	8.2
engardelinux	secure_linux	1.5
linux	linux_kernel	2.4.0, 2.4.1, 2.4.2
mandrakesoft	mandrake_linux_corporate_server	2.1, 2.1
engardelinux	secure_community	2.0
suse	suse_linux_database_server
suse	suse_linux_admin-cd_for_firewall

Timeline

May 14, 2004 CVE Published
Feb 4, 2022 EPSS Score
Mar 28, 2022 EPSS Score
May 19, 2022 EPSS Score
Jul 10, 2022 EPSS Score
Sep 1, 2022 EPSS Score
Oct 23, 2022 EPSS Score
Dec 14, 2022 EPSS Score
Feb 4, 2023 EPSS Score
Mar 7, 2023 EPSS Score
Mar 28, 2023 EPSS Score
May 19, 2023 EPSS Score

References

10352 vdb
RHSA-2004:413 vendor-advisory
RHSA-2004:418 vendor-advisory
http://www.kernel.org/pub/linux/kernel/v2.4/testing/patch-2.4.27.log url
FEDORA-2004-186 vendor-advisory
CLA-2004:845 vendor-advisory
http://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=125168 url
MDKSA-2004:062 vendor-advisory
linux-e1000-bo(16159) vdb
20040804-01-U vendor-advisory
GLSA-200407-02 vendor-advisory
oval:org.mitre.oval:def:11136 vdb
SUSE-SA:2004:020 vendor-advisory
https://nvd.nist.gov/vuln/detail/CVE-2004-0535 advisory
http://lwn.net/Articles/91155 url

Open in Interactive Console →