CVSS: 7.5EPSS: 7%CPEs: 1EXPL: 2CVE-2004-0816 – Linux Kernel 2.6.x - IPTables Logging Rules Integer Underflow Remote (PoC)
https://notcve.org/view.php?id=CVE-2004-0816
26 Oct 2004 — Integer underflow in the firewall logging rules for iptables in Linux before 2.6.8 allows remote attackers to cause a denial of service (application crash) via a malformed IP packet. Vaciamiento de enteros en las reglas de registro del cortafuegos de iptables en Linux anteriores a 2.6.8 permite a atacantes remotos causar una denegación de servicio (caída de aplicación) mediante un paquete IP malformado. • https://packetstorm.news/files/id/34947 • CWE-191: Integer Underflow (Wrap or Wraparound) •
CVSS: 9.1EPSS: 0%CPEs: 87EXPL: 3CVE-2004-0415 – Linux Kernel 2.4.26 - File Offset Pointer Handling Memory Disclosure
https://notcve.org/view.php?id=CVE-2004-0415
05 Aug 2004 — Linux kernel does not properly convert 64-bit file offset pointers to 32 bits, which allows local users to access portions of kernel memory. • https://packetstorm.news/files/id/34055 •
CVSS: 7.8EPSS: 0%CPEs: 156EXPL: 0CVE-2004-0658
https://notcve.org/view.php?id=CVE-2004-0658
13 Jul 2004 — Integer overflow in the hpsb_alloc_packet function (incorrectly reported as alloc_hpsb_packet) in IEEE 1394 (Firewire) driver 2.4 and 2.6 allows local users to cause a denial of service (crash) and possibly execute arbitrary code via the functions (1) raw1394_write, (2) state_connected, (3) handle_remote_request, or (4) hpsb_make_writebpacket. • http://marc.info/?l=bugtraq&m=108793792820740 •
CVSS: 7.2EPSS: 0%CPEs: 1EXPL: 0CVE-2004-0447 – Debian Linux Security Advisory 1067-1
https://notcve.org/view.php?id=CVE-2004-0447
09 Jul 2004 — Unknown vulnerability in Linux before 2.4.26 for IA64 allows local users to cause a denial of service, with unknown impact. NOTE: due to a typo, this issue was accidentally assigned CVE-2004-0477. This is the proper candidate to use for the Linux local DoS. Vulnerabilidad desconocida en Linux para IA64 anteriores a 2.4.26 permite a usuarios locales causar una denegación de servicio, con impacto desconocido. Several local and remote vulnerabilities have been discovered in the Linux kernel that may lead to a ... • ftp://patches.sgi.com/support/free/security/advisories/20040804-01-U.asc •
CVSS: 7.1EPSS: 0%CPEs: 93EXPL: 0CVE-2004-0535 – 200420kernel.txt
https://notcve.org/view.php?id=CVE-2004-0535
08 Jun 2004 — The e1000 driver for Linux kernel 2.4.26 and earlier does not properly initialize memory before using it, which allows local users to read portions of kernel memory. NOTE: this issue was originally incorrectly reported as a "buffer overflow" by some sources. El controlador e1000 del kernel de Linux 2.4.26 y anteriores no inicializa la memoria antes de usarla, lo que permite a usuarios locales leer porciones de la memoria del kernel. NOTA: Este problema ha sido originalmente descrito incorrectamente por otra... • ftp://patches.sgi.com/support/free/security/advisories/20040804-01-U.asc •
CVSS: 2.1EPSS: 0%CPEs: 184EXPL: 3CVE-2004-2135 – Linux Kernel 2.6.x - Cryptoloop Information Disclosure
https://notcve.org/view.php?id=CVE-2004-2135
26 May 2004 — cryptoloop on Linux kernel 2.6.x, when used on certain file systems with a block size 1024 or greater, has certain "IV computation" weaknesses that allow watermarked files to be detected without decryption. • https://www.exploit-db.com/exploits/25707 •
CVSS: 5.5EPSS: 0%CPEs: 2EXPL: 0CVE-2004-0427 – Debian Linux Security Advisory 1067-1
https://notcve.org/view.php?id=CVE-2004-0427
30 Apr 2004 — The do_fork function in Linux 2.4.x before 2.4.26, and 2.6.x before 2.6.6, does not properly decrement the mm_count counter when an error occurs after the mm_struct for a child process has been activated, which triggers a memory leak that allows local users to cause a denial of service (memory exhaustion) via the clone (CLONE_VM) system call. La función do_fork en Linux 2.4.x y 2.6.x no decrementa el contador mm_count cuando un error ocurre después de que se haya activado mm_struct de un proceso hijo, lo qu... • ftp://patches.sgi.com/support/free/security/advisories/20040504-01-U.asc • CWE-401: Missing Release of Memory after Effective Lifetime •
CVSS: 7.8EPSS: 0%CPEs: 3EXPL: 0CVE-2004-0109 – iDEFENSE Security Advisory 2004-04-14.t
https://notcve.org/view.php?id=CVE-2004-0109
14 Apr 2004 — Buffer overflow in the ISO9660 file system component for Linux kernel 2.4.x, 2.5.x and 2.6.x, allows local users with physical access to overflow kernel memory and execute arbitrary code via a malformed CD containing a long symbolic link entry. Desbordamiento de búfer en el componente de sistema de ficheros ISO9660 del kernel de Linux 2.4.x y 2.6.x permite a usuarios locales con acceso físico desbordar memoria del kernel y ejecutar código arbitrario mediante un CD malformado con un una entrada de enlace sim... • ftp://patches.sgi.com/support/free/security/advisories/20040405-01-U.asc •
CVSS: 5.5EPSS: 0%CPEs: 58EXPL: 0CVE-2004-0075
https://notcve.org/view.php?id=CVE-2004-0075
15 Mar 2004 — The Vicam USB driver in Linux before 2.4.25 does not use the copy_from_user function when copying data from userspace to kernel space, which crosses security boundaries and allows local users to cause a denial of service. El controlador USB Vicam de Linux 2.5.25 no utiliza la función copy_from_user cuando copia datos de espacio de usuario a espacio de kernel, lo que traspasa límites de seguridad y permite a usuarios locales causar una denegación de servicio. • http://distro.conectiva.com.br/atualizacoes/?id=a&anuncio=000846 •
CVSS: 9.8EPSS: 0%CPEs: 26EXPL: 0CVE-2002-1574
https://notcve.org/view.php?id=CVE-2002-1574
03 Mar 2004 — Buffer overflow in the ixj telephony card driver in Linux before 2.4.20 has unknown impact and attack vectors. Desbordamiento de búfer en el controlador de tarjeta de telefónica ixj en Linux anteriores a 2.4.20 tiene vectores de ataque e impacto desconocidos. • http://www.ciac.org/ciac/bulletins/n-096.shtml •