CVSS: 7.2EPSS: 0%CPEs: 156EXPL: 0CVE-2004-0658
https://notcve.org/view.php?id=CVE-2004-0658
Integer overflow in the hpsb_alloc_packet function (incorrectly reported as alloc_hpsb_packet) in IEEE 1394 (Firewire) driver 2.4 and 2.6 allows local users to cause a denial of service (crash) and possibly execute arbitrary code via the functions (1) raw1394_write, (2) state_connected, (3) handle_remote_request, or (4) hpsb_make_writebpacket. • http://marc.info/?l=bugtraq&m=108793792820740 https://exchange.xforce.ibmcloud.com/vulnerabilities/16480 •
CVSS: 2.1EPSS: 0%CPEs: 184EXPL: 3CVE-2004-2135 – Linux Kernel 2.6.x - Cryptoloop Information Disclosure
https://notcve.org/view.php?id=CVE-2004-2135
cryptoloop on Linux kernel 2.6.x, when used on certain file systems with a block size 1024 or greater, has certain "IV computation" weaknesses that allow watermarked files to be detected without decryption. • https://www.exploit-db.com/exploits/25707 http://marc.info/?l=linux-kernel&m=107719798631935&w=2 http://mareichelt.de/pub/notmine/diskenc.pdf http://www.securiteam.com/exploits/5UP0P1PFPM.html http://www.securityfocus.com/bid/13775 •
CVSS: 4.6EPSS: 0%CPEs: 34EXPL: 0CVE-2004-0229
https://notcve.org/view.php?id=CVE-2004-0229
The framebuffer driver in Linux kernel 2.6.x does not properly use the fb_copy_cmap function, with unknown impact. El controlador de framebuffer en Linux kernel 2.6.x no usa adecuadamente la función fb_copy_cmap, con impacto desconocido. • http://distro.conectiva.com.br/atualizacoes/?id=a&anuncio=000852 http://security.gentoo.org/glsa/glsa-200407-02.xml http://www.mandriva.com/security/advisories?name=MDKSA-2004:037 http://www.novell.com/linux/security/advisories/2004_10_kernel.html http://www.securityfocus.com/bid/10211 https://exchange.xforce.ibmcloud.com/vulnerabilities/15974 •
CVSS: 7.2EPSS: 0%CPEs: 17EXPL: 2CVE-2004-0186 – Samba 2.2.8 (Linux Kernel 2.6 / Debian / Mandrake) - Share Privilege Escalation
https://notcve.org/view.php?id=CVE-2004-0186
smbmnt in Samba 2.x and 3.x on Linux 2.6, when installed setuid, allows local users to gain root privileges by mounting a Samba share that contains a setuid root program, whose setuid attributes are not cleared when the share is mounted. smbmnt en Samba 2.0 y 3.0 para Linux 2.6, cuando se instala con setuid, permite a usuarios locales ganar privilegios de root montando un recurso compartido de Samba que contiene un programa con setuid de root, cuyos atributos no se limpian cuando el recurso compartido es eliminado. • https://www.exploit-db.com/exploits/23674 http://marc.info/?l=bugtraq&m=107636290906296&w=2 http://marc.info/?l=bugtraq&m=107657505718743&w=2 http://www.debian.org/security/2004/dsa-463 http://www.osvdb.org/3916 http://www.securityfocus.com/bid/9619 https://exchange.xforce.ibmcloud.com/vulnerabilities/15131 •
CVSS: 7.2EPSS: 0%CPEs: 112EXPL: 3CVE-2004-0077 – Linux Kernel 2.2.25/2.4.24/2.6.2 - 'mremap()' Local Privilege Escalation
https://notcve.org/view.php?id=CVE-2004-0077
The do_mremap function for the mremap system call in Linux 2.2 to 2.2.25, 2.4 to 2.4.24, and 2.6 to 2.6.2, does not properly check the return value from the do_munmap function when the maximum number of VMA descriptors is exceeded, which allows local users to gain root privileges, a different vulnerability than CAN-2003-0985. La función do_remap en mremap de Linux 2.2 a 2.2.25, 2.4 a 2.4.24, y 2.6 a 2.6.2 no comprueba adecuadamente el valor devuelto por la función do_munmap cuando se excede el número máximo de descriptores VMA, lo que permite a usuarios locales ganar privilegios de root, una vulnerabilidad distinta de CAN-2004-0985. A critical security vulnerability has been found in the Linux kernel memory management code inside the mremap(2) system call due to missing function return value check. This bug is completely unrelated to the mremap bug disclosed on 05-01-2004 except concerning the same internal kernel function code. Versions affected: 2.2 up to 2.2.25, 2.4 up to 2.4.24, 2.6 up to 2.6.2. • https://www.exploit-db.com/exploits/160 https://www.exploit-db.com/exploits/154 http://archives.neohapsis.com/archives/vulnwatch/2004-q1/0040.html http://distro.conectiva.com.br/atualizacoes/?id=a&anuncio=000820 http://fedoranews.org/updates/FEDORA-2004-079.shtml http://frontal2.mandriva.com/security/advisories?name=MDKSA-2004:015 http://isec.pl/vulnerabilities/isec-0014-mremap-unmap.txt http://marc.info/?l=bugtraq&m=107711762014175&w=2 http://marc.info/?l=bugtraq&m=10771 •