// For flags

CVE-2004-0946

 

Severity Score

10.0
*CVSS v2

Exploit Likelihood

*EPSS

Affected Versions

*CPE

Public Exploits

0
*Multiple Sources

Exploited in Wild

-
*KEV

Decision

-
*SSVC
Descriptions

rquotad in nfs-utils (rquota_server.c) before 1.0.6-r6 on 64-bit architectures does not properly perform an integer conversion, which leads to a stack-based buffer overflow and allows remote attackers to execute arbitrary code via a crafted NFS request.

rquotad en nfs-utils (rquota_server.c) anteriores a 1.0.6-r6 en arquitecturas de 64 bits no realiza una conversión de enteros adecuadamente, lo que conduce a un desbordamiento de búfer basado en la pila y permite a atacantes remotos ejecutar código arbitrario mediante una petición NFS artesanal.

*Credits: N/A
CVSS Scores
Attack Vector
Network
Attack Complexity
Low
Authentication
None
Confidentiality
Complete
Integrity
Complete
Availability
Complete
* Common Vulnerability Scoring System
SSVC
  • Decision:-
Exploitation
-
Automatable
-
Tech. Impact
-
* Organization's Worst-case Scenario
Timeline
  • 2004-10-12 CVE Reserved
  • 2004-12-22 CVE Published
  • 2023-11-29 EPSS Updated
  • 2024-08-08 CVE Updated
  • ---------- Exploited in Wild
  • ---------- KEV Due Date
  • ---------- First Exploit
CWE
CAPEC
Affected Vendors, Products, and Versions
Vendor Product Version Other Status
Vendor Product Version Other Status <-- --> Vendor Product Version Other Status
Nfs
Search vendor "Nfs"
Nfs-utils
Search vendor "Nfs" for product "Nfs-utils"
1.0
Search vendor "Nfs" for product "Nfs-utils" and version "1.0"
-
Affected
Nfs
Search vendor "Nfs"
Nfs-utils
Search vendor "Nfs" for product "Nfs-utils"
1.0.1
Search vendor "Nfs" for product "Nfs-utils" and version "1.0.1"
-
Affected
Nfs
Search vendor "Nfs"
Nfs-utils
Search vendor "Nfs" for product "Nfs-utils"
1.0.2
Search vendor "Nfs" for product "Nfs-utils" and version "1.0.2"
-
Affected
Nfs
Search vendor "Nfs"
Nfs-utils
Search vendor "Nfs" for product "Nfs-utils"
1.0.3
Search vendor "Nfs" for product "Nfs-utils" and version "1.0.3"
-
Affected
Nfs
Search vendor "Nfs"
Nfs-utils
Search vendor "Nfs" for product "Nfs-utils"
1.0.4
Search vendor "Nfs" for product "Nfs-utils" and version "1.0.4"
-
Affected
Nfs
Search vendor "Nfs"
Nfs-utils
Search vendor "Nfs" for product "Nfs-utils"
1.0.6
Search vendor "Nfs" for product "Nfs-utils" and version "1.0.6"
-
Affected
Redhat
Search vendor "Redhat"
Enterprise Linux
Search vendor "Redhat" for product "Enterprise Linux"
3.0
Search vendor "Redhat" for product "Enterprise Linux" and version "3.0"
advanced_server
Affected
Redhat
Search vendor "Redhat"
Enterprise Linux
Search vendor "Redhat" for product "Enterprise Linux"
3.0
Search vendor "Redhat" for product "Enterprise Linux" and version "3.0"
enterprise_server
Affected
Redhat
Search vendor "Redhat"
Enterprise Linux
Search vendor "Redhat" for product "Enterprise Linux"
3.0
Search vendor "Redhat" for product "Enterprise Linux" and version "3.0"
workstation_server
Affected
Redhat
Search vendor "Redhat"
Enterprise Linux Desktop
Search vendor "Redhat" for product "Enterprise Linux Desktop"
3.0
Search vendor "Redhat" for product "Enterprise Linux Desktop" and version "3.0"
-
Affected