CVSS: 5.0EPSS: 1%CPEs: 1EXPL: 0CVE-2004-0592
https://notcve.org/view.php?id=CVE-2004-0592
The tcp_find_option function of the netfilter subsystem for IPv6 in the SUSE Linux 2.6.5 kernel with USAGI patches, when using iptables and TCP options rules, allows remote attackers to cause a denial of service (CPU consumption by infinite loop) via a large option length that produces a negative integer after a casting operation to the char type, a similar flaw to CVE-2004-0626. • http://lists.grok.org.uk/pipermail/full-disclosure/2004-July/023408.html http://www.novell.com/linux/security/advisories/2004_20_kernel.html https://exchange.xforce.ibmcloud.com/vulnerabilities/43137 •
CVSS: 2.1EPSS: 0%CPEs: 1EXPL: 0CVE-2004-2658
https://notcve.org/view.php?id=CVE-2004-2658
resmgr in SUSE CORE 9 does not properly identify terminal names, which allows local users to spoof terminals and login types. • http://support.novell.com/techcenter/psdb/fa6c6a3e792bf79b1d85821c689ea578.html •
CVSS: 5.1EPSS: 0%CPEs: 17EXPL: 0CVE-2004-1476
https://notcve.org/view.php?id=CVE-2004-1476
Stack-based buffer overflow in the VideoCD (VCD) code in xine-lib 1-rc2 through 1-rc5, as derived from libcdio, allows attackers to execute arbitrary code via a VideoCD with an unterminated disk label. • http://www.gentoo.org/security/en/glsa/glsa-200409-30.xml http://www.securityfocus.com/archive/1/375485/2004-09-02/2004-09-08/0 http://www.securityfocus.com/bid/11206 http://xinehq.de/index.php/security/XSA-2004-4 https://exchange.xforce.ibmcloud.com/vulnerabilities/17431 •
CVSS: 10.0EPSS: 11%CPEs: 53EXPL: 0CVE-2004-1154
https://notcve.org/view.php?id=CVE-2004-1154
Integer overflow in the Samba daemon (smbd) in Samba 2.x and 3.0.x through 3.0.9 allows remote authenticated users to cause a denial of service (application crash) and possibly execute arbitrary code via a Samba request with a large number of security descriptors that triggers a heap-based buffer overflow. • ftp://ftp.sco.com/pub/updates/UnixWare/SCOSA-2005.17/SCOSA-2005.17.txt http://lists.apple.com/archives/security-announce/2005/Mar/msg00000.html http://secunia.com/advisories/13453 http://sunsolve.sun.com/search/document.do?assetkey=1-26-101643-1 http://sunsolve.sun.com/search/document.do?assetkey=1-26-57730-1 http://www.debian.org/security/2005/dsa-701 http://www.idefense.com/application/poi/display?id=165&type=vulnerabilities http://www.kb.cert.org/vuls/id/226184 ht •
CVSS: 2.1EPSS: 0%CPEs: 5EXPL: 0CVE-2004-1190
https://notcve.org/view.php?id=CVE-2004-1190
SUSE Linux before 9.1 and SUSE Linux Enterprise Server before 9 do not properly check commands sent to CD devices that have been opened read-only, which could allow local users to conduct unauthorized write activities to modify the firmware of associated SCSI devices. • http://secunia.com/advisories/18510 http://www.novell.com/linux/security/advisories/2004_42_kernel.html http://www.redhat.com/support/errata/RHSA-2006-0101.html http://www.securityfocus.com/bid/11784 https://exchange.xforce.ibmcloud.com/vulnerabilities/18370 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A9369 https://access.redhat.com/security/cve/CVE-2004-1190 https://bugzilla.redhat.com/show_bug.cgi?id=1617395 •