Main Vulnerability Database Vulnerabilities #VU93728

#VU93728 Buffer overflow in Linux kernel - CVE-2004-1333

Published: July 3, 2024

Vulnerability identifier: #VU93728

Vulnerability risk: Low

CVSSv4.0: CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N/E:P/U:Clear

CVE-ID: CVE-2004-1333

CWE-ID: CWE-119

Exploitation vector: Local access

Exploit availability: Public exploit is available

Vulnerable software:
Linux kernel

Software vendor:
Linux Foundation

Description

The vulnerability allows a local user to perform service disruption.

Integer overflow in the vc_resize function in the Linux kernel 2.4 and 2.6 before 2.6.10 allows local users to cause a denial of service (kernel crash) via a short new screen value, which leads to a buffer overflow.

Remediation

Install update from vendor's website.

External links

http://www.securitytrap.com/mail/full-disclosure/2004/Dec/0323.html
http://www.guninski.com/where_do_you_want_billg_to_go_today_2.html
http://www.novell.com/linux/security/advisories/2005_18_kernel.html
http://www.securityfocus.com/bid/11956
https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=152532
http://secunia.com/advisories/17826
http://www.debian.org/security/2006/dsa-1070
http://www.debian.org/security/2006/dsa-1067
http://www.debian.org/security/2006/dsa-1069
http://secunia.com/advisories/20162
http://secunia.com/advisories/20163
http://secunia.com/advisories/20202
http://www.debian.org/security/2006/dsa-1082
http://secunia.com/advisories/20338
http://www.mandriva.com/security/advisories?name=MDKSA-2005:218
http://www.mandriva.com/security/advisories?name=MDKSA-2005:219
https://exchange.xforce.ibmcloud.com/vulnerabilities/18523
https://usn.ubuntu.com/47-1/

#VU93728 Buffer overflow in Linux kernel - CVE-2004-1333

Description

Remediation

External links

Please verify you're human