Lucene search

MitreCVE-2004-0619

HistoryDec 06, 2004 - 5:00 a.m.

CVE-2004-0619

2004-12-0605:00:00

mitre

web.nvd.nist.gov

cve-2004-0619

linux

broadcom

cryptonet

integer overflow

denial of service

buffer overflow

nvd

CVSS2

7.2

Attack Vector

LOCAL

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:L/AC:L/Au:N/C:C/I:C/A:C

AI Score

7.6

Confidence

High

EPSS

0.001

Percentile

25.6%

JSON

Integer overflow in the ubsec_keysetup function for Linux Broadcom 5820 cryptonet driver allows local users to cause a denial of service (crash) and possibly execute arbitrary code via a negative add_dsa_buf_bytes variable, which leads to a buffer overflow.

Affected configurations

Nvd

Node

redhatfedora_coreMatchcore_1.0

redhatlinuxMatch8.0

redhatlinuxMatch8.0i386

redhatlinuxMatch8.0i686

AND

redhatkernelMatch2.4.20-8athlon

redhatkernelMatch2.4.20-8athlon_smp

redhatkernelMatch2.4.20-8i386

redhatkernelMatch2.4.20-8i386_src

redhatkernelMatch2.4.20-8i586

redhatkernelMatch2.4.20-8i586_smp

redhatkernelMatch2.4.20-8i686

redhatkernelMatch2.4.20-8i686_smp

VendorProductVersionCPE
redhatfedora_corecore_1.0cpe:2.3:o:redhat:fedora_core:core_1.0:*:*:*:*:*:*:*
redhatlinux8.0cpe:2.3:o:redhat:linux:8.0:*:*:*:*:*:*:*
redhatlinux8.0cpe:2.3:o:redhat:linux:8.0:*:i386:*:*:*:*:*
redhatlinux8.0cpe:2.3:o:redhat:linux:8.0:*:i686:*:*:*:*:*
redhatkernel2.4.20-8cpe:2.3:a:redhat:kernel:2.4.20-8:*:athlon:*:*:*:*:*
redhatkernel2.4.20-8cpe:2.3:a:redhat:kernel:2.4.20-8:*:athlon_smp:*:*:*:*:*
redhatkernel2.4.20-8cpe:2.3:a:redhat:kernel:2.4.20-8:*:i386:*:*:*:*:*
redhatkernel2.4.20-8cpe:2.3:a:redhat:kernel:2.4.20-8:*:i386_src:*:*:*:*:*
redhatkernel2.4.20-8cpe:2.3:a:redhat:kernel:2.4.20-8:*:i586:*:*:*:*:*
redhatkernel2.4.20-8cpe:2.3:a:redhat:kernel:2.4.20-8:*:i586_smp:*:*:*:*:*

Vendor	Product	Version	CPE
redhat	fedora_core	core_1.0	cpe:2.3:o:redhat:fedora_core:core_1.0:::::::*
redhat	linux	8.0	cpe:2.3:o:redhat:linux:8.0:::::::*
redhat	linux	8.0	cpe:2.3:o:redhat:linux:8.0::i386:::::
redhat	linux	8.0	cpe:2.3:o:redhat:linux:8.0::i686:::::
redhat	kernel	2.4.20-8	cpe:2.3:a:redhat:kernel:2.4.20-8::athlon:::::
redhat	kernel	2.4.20-8	cpe:2.3:a:redhat:kernel:2.4.20-8::athlon_smp:::::
redhat	kernel	2.4.20-8	cpe:2.3:a:redhat:kernel:2.4.20-8::i386:::::
redhat	kernel	2.4.20-8	cpe:2.3:a:redhat:kernel:2.4.20-8::i386_src:::::
redhat	kernel	2.4.20-8	cpe:2.3:a:redhat:kernel:2.4.20-8::i586:::::
redhat	kernel	2.4.20-8	cpe:2.3:a:redhat:kernel:2.4.20-8::i586_smp:::::

Rows per page:

1-10 of 121

References

marc.info/?l=bugtraq&m=108802653409053&w=2

secunia.com/advisories/11936

www.ciac.org/ciac/bulletins/p-047.shtml

www.redhat.com/support/errata/RHSA-2004-549.html

www.redhat.com/support/errata/RHSA-2005-283.html

www.securityfocus.com/bid/10599

exchange.xforce.ibmcloud.com/vulnerabilities/16459

oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A9773

CVSS2

7.2

Attack Vector

LOCAL

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:L/AC:L/Au:N/C:C/I:C/A:C

AI Score

7.6

Confidence

High

EPSS

0.001

Percentile

25.6%

JSON

Related for CVE-2004-0619