Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
cve[email protected]CVE-2004-2731
HistoryOct 09, 2007 - 10:00 a.m.

CVE-2004-2731

2007-10-0910:00:00
CWE-189
[email protected]
web.nvd.nist.gov
27
cve-2004-2731
integer overflow
sbus prom driver
linux kernel
arbitrary code execution
nvd

4.4 Medium

CVSS2

Attack Vector

LOCAL

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:L/AC:M/Au:N/C:P/I:P/A:P

7.3 High

AI Score

Confidence

High

0.0004 Low

EPSS

Percentile

5.2%

JSON

Multiple integer overflows in Sbus PROM driver (drivers/sbus/char/openprom.c) for the Linux kernel 2.4.x up to 2.4.27, 2.6.x up to 2.6.7, and possibly later versions, allow local users to execute arbitrary code by specifying (1) a small buffer size to the copyin_string function or (2) a negative buffer size to the copyin function.

Affected configurations

NVD
Node
linuxlinux_kernelMatch2.4.0
OR
linuxlinux_kernelMatch2.4.0test1
OR
linuxlinux_kernelMatch2.4.0test10
OR
linuxlinux_kernelMatch2.4.0test11
OR
linuxlinux_kernelMatch2.4.0test12
OR
linuxlinux_kernelMatch2.4.0test2
OR
linuxlinux_kernelMatch2.4.0test3
OR
linuxlinux_kernelMatch2.4.0test4
OR
linuxlinux_kernelMatch2.4.0test5
OR
linuxlinux_kernelMatch2.4.0test6
OR
linuxlinux_kernelMatch2.4.0test7
OR
linuxlinux_kernelMatch2.4.0test8
OR
linuxlinux_kernelMatch2.4.0test9
OR
linuxlinux_kernelMatch2.4.1
OR
linuxlinux_kernelMatch2.4.2
OR
linuxlinux_kernelMatch2.4.3
OR
linuxlinux_kernelMatch2.4.3pre3
OR
linuxlinux_kernelMatch2.4.4
OR
linuxlinux_kernelMatch2.4.5
OR
linuxlinux_kernelMatch2.4.6
OR
linuxlinux_kernelMatch2.4.7
OR
linuxlinux_kernelMatch2.4.8
OR
linuxlinux_kernelMatch2.4.9
OR
linuxlinux_kernelMatch2.4.9_pre5
OR
linuxlinux_kernelMatch2.4.10
OR
linuxlinux_kernelMatch2.4.11
OR
linuxlinux_kernelMatch2.4.11pre3
OR
linuxlinux_kernelMatch2.4.12
OR
linuxlinux_kernelMatch2.4.13
OR
linuxlinux_kernelMatch2.4.14
OR
linuxlinux_kernelMatch2.4.15
OR
linuxlinux_kernelMatch2.4.16
OR
linuxlinux_kernelMatch2.4.17
OR
linuxlinux_kernelMatch2.4.18
OR
linuxlinux_kernelMatch2.4.18pre1
OR
linuxlinux_kernelMatch2.4.18pre2
OR
linuxlinux_kernelMatch2.4.18pre3
OR
linuxlinux_kernelMatch2.4.18pre4
OR
linuxlinux_kernelMatch2.4.18pre5
OR
linuxlinux_kernelMatch2.4.18pre6
OR
linuxlinux_kernelMatch2.4.18pre7
OR
linuxlinux_kernelMatch2.4.18pre8
OR
linuxlinux_kernelMatch2.4.18pre9
OR
linuxlinux_kernelMatch2.4.19
OR
linuxlinux_kernelMatch2.4.19pre1
OR
linuxlinux_kernelMatch2.4.19pre2
OR
linuxlinux_kernelMatch2.4.19pre3
OR
linuxlinux_kernelMatch2.4.19pre4
OR
linuxlinux_kernelMatch2.4.19pre5
OR
linuxlinux_kernelMatch2.4.19pre6
OR
linuxlinux_kernelMatch2.4.20
OR
linuxlinux_kernelMatch2.4.21
OR
linuxlinux_kernelMatch2.4.21pre1
OR
linuxlinux_kernelMatch2.4.21pre4
OR
linuxlinux_kernelMatch2.4.21pre7
OR
linuxlinux_kernelMatch2.4.22
OR
linuxlinux_kernelMatch2.4.22pre10
OR
linuxlinux_kernelMatch2.4.23
OR
linuxlinux_kernelMatch2.4.23pre9
OR
linuxlinux_kernelMatch2.4.23_ow2
OR
linuxlinux_kernelMatch2.4.24
OR
linuxlinux_kernelMatch2.4.24_ow1
OR
linuxlinux_kernelMatch2.4.25
OR
linuxlinux_kernelMatch2.4.26
OR
linuxlinux_kernelMatch2.4.27
OR
linuxlinux_kernelMatch2.4.27pre1
OR
linuxlinux_kernelMatch2.4.27pre2
OR
linuxlinux_kernelMatch2.4.27pre3
OR
linuxlinux_kernelMatch2.4.27pre4
OR
linuxlinux_kernelMatch2.4.27pre5
OR
linuxlinux_kernelMatch2.4.28
OR
linuxlinux_kernelMatch2.4.29
OR
linuxlinux_kernelMatch2.4.29rc1
OR
linuxlinux_kernelMatch2.4.29rc2
OR
linuxlinux_kernelMatch2.4.30
OR
linuxlinux_kernelMatch2.4.30rc2
OR
linuxlinux_kernelMatch2.4.30rc3
OR
linuxlinux_kernelMatch2.4.31
OR
linuxlinux_kernelMatch2.4.31pre1
OR
linuxlinux_kernelMatch2.4.32
OR
linuxlinux_kernelMatch2.4.32pre1
OR
linuxlinux_kernelMatch2.4.32pre2
OR
linuxlinux_kernelMatch2.4.33
OR
linuxlinux_kernelMatch2.4.33pre1
OR
linuxlinux_kernelMatch2.4.33.2
OR
linuxlinux_kernelMatch2.4.33.3
OR
linuxlinux_kernelMatch2.4.33.4
OR
linuxlinux_kernelMatch2.4.33.5
OR
linuxlinux_kernelMatch2.4.34
OR
linuxlinux_kernelMatch2.4.34rc3
OR
linuxlinux_kernelMatch2.4.34.1
OR
linuxlinux_kernelMatch2.4.34.2
OR
linuxlinux_kernelMatch2.4.35
OR
linuxlinux_kernelMatch2.4.35.2
OR
linuxlinux_kernelMatch2.6.0
OR
linuxlinux_kernelMatch2.6.1
OR
linuxlinux_kernelMatch2.6.2
OR
linuxlinux_kernelMatch2.6.3
OR
linuxlinux_kernelMatch2.6.4
OR
linuxlinux_kernelMatch2.6.5
OR
linuxlinux_kernelMatch2.6.6
OR
linuxlinux_kernelMatch2.6.7

Related

cvelist 1
nvd 1
openvas 4
osv 2
debian 2
nessus 1
cvelist
cvelist
CVE-2004-2731
2007-10-09 10:00:00
nvd
nvd
CVE-2004-2731
2004-12-31 05:00:00
openvas
openvas
Debian: Security Advisory (DSA-1503-2)
2008-03-11 00:00:00
Debian Security Advisory DSA 1503-1 (kernel-source-2.4.27 (2.4.27-10sarge6))
2008-02-28 00:00:00
Debian Security Advisory DSA 1503-2 (kernel-source-2.4.27 (2.4.27-10sarge7))
2008-03-11 00:00:00
osv
osv
kernel-source-2.4.27 - several vulnerabilities
2008-02-22 00:00:00
kernelimage-2.4.27 - several issues
2008-02-22 00:00:00
debian
debian
[SECURITY] [DSA 1503-2] New Linux kernel 2.4.27 packages fix several issues
2008-03-06 07:47:54
[SECURITY] [DSA 1503-1] New Linux kernel 2.4.27 packages fix several issues
2008-02-22 20:55:49
nessus
nessus
Debian DSA-1503-1 : kernel-source-2.4.27 - several vulnerabilities
2008-02-25 00:00:00

4.4 Medium

CVSS2

Attack Vector

LOCAL

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:L/AC:M/Au:N/C:P/I:P/A:P

7.3 High

AI Score

Confidence

High

0.0004 Low

EPSS

Percentile

5.2%

JSON
Related for CVE-2004-2731
cvelist1nvd1openvas4osv2debian2nessus1