CVE-2004-1072 — Vulnetix

Try Vulnetix Request Demo

CVE-2004-1072 PUBLISHED CVSS 7.199999809265137 HIGH

The binfmt_elf loader (binfmt_elf.c) in Linux kernel 2.4.x up to 2.4.27, and 2.6.x up to 2.6.8, may create an interpreter name string that is not NULL terminated, which could cause strings longer than PATH_MAX to be used, leading to buffer overflows that allow local users to cause a denial of service (hang) and possibly execute arbitrary code.

EPSS 0.07% · 21.4th percentile

Risk Scores

CVSS v2.0

7.199999809265137

EPSS Score

0.07%

21.4th percentile

Affected Products

Vendor	Product	Versions
trustix	secure_linux	2.2, 2.1, 2.0
redhat	linux_advanced_workstation	2.1, 2.1
suse	suse_linux	9.0, 9.0, 9.0
linux	linux_kernel	2.4.2, 2.4.3, 2.4.4
redhat	fedora_core	core_2.0, core_3.0
n/a	n/a	n/a
turbolinux	turbolinux_server	10.0
redhat	enterprise_linux_desktop	3.0
redhat	enterprise_linux	3.0, 2.1, 2.1

Timeline

Dec 1, 2004 CVE Published
Feb 4, 2022 EPSS Score
Mar 28, 2022 EPSS Score
May 19, 2022 EPSS Score
Jul 10, 2022 EPSS Score
Sep 1, 2022 EPSS Score
Oct 23, 2022 EPSS Score
Dec 14, 2022 EPSS Score
Feb 4, 2023 EPSS Score
Mar 7, 2023 EPSS Score
Mar 28, 2023 EPSS Score
May 19, 2023 EPSS Score

References

http://www.debian.org/security/2006/dsa-1067 url
http://isec.pl/vulnerabilities/isec-0017-binfmt_elf.txt advisory
20163 third-party-advisory
oval:org.mitre.oval:def:11195 vdb
DSA-1082 vendor-advisory
MDKSA-2005:022 vendor-advisory
http://www.isec.pl/vulnerabilities/isec-0017-binfmt_elf.txt url
FLSA:2336 vendor-advisory
RHSA-2005:275 vendor-advisory
19607 third-party-advisory
DSA-1070 vendor-advisory
RHSA-2004:537 vendor-advisory
20162 third-party-advisory
linux-elf-setuid-gain-privileges(18025) vdb
11646 vdb
DSA-1069 vendor-advisory
20060402-01-U vendor-advisory
RHSA-2004:505 vendor-advisory
20202 third-party-advisory
RHSA-2004:504 vendor-advisory

…and 2 more

Open in Interactive Console →