7.2

CVE-2004-1072

EPSS 0.07%
Published 10.01.2005 05:00:00
Last modified 03.04.2025 01:03:51
Source cve@mitre.org
Teams watchlist Login
Open Login

The binfmt_elf loader (binfmt_elf.c) in Linux kernel 2.4.x up to 2.4.27, and 2.6.x up to 2.6.8, may create an interpreter name string that is not NULL terminated, which could cause strings longer than PATH_MAX to be used, leading to buffer overflows that allow local users to cause a denial of service (hang) and possibly execute arbitrary code.

Affected products Warnungen 0 Metrics 2 CWE 0 References 23

Data is provided by the National Vulnerability Database (NVD)

Linux ≫ Linux Kernel Version2.4.0

Linux ≫ Linux Kernel Version2.4.0 Updatetest1

Linux ≫ Linux Kernel Version2.4.0 Updatetest10

Linux ≫ Linux Kernel Version2.4.0 Updatetest11

Linux ≫ Linux Kernel Version2.4.0 Updatetest12

Linux ≫ Linux Kernel Version2.4.0 Updatetest2

Linux ≫ Linux Kernel Version2.4.0 Updatetest3

Linux ≫ Linux Kernel Version2.4.0 Updatetest4

Linux ≫ Linux Kernel Version2.4.0 Updatetest5

Linux ≫ Linux Kernel Version2.4.0 Updatetest6

Linux ≫ Linux Kernel Version2.4.0 Updatetest7

Linux ≫ Linux Kernel Version2.4.0 Updatetest8

Linux ≫ Linux Kernel Version2.4.0 Updatetest9

Linux ≫ Linux Kernel Version2.4.1

Linux ≫ Linux Kernel Version2.4.2

Linux ≫ Linux Kernel Version2.4.3

Linux ≫ Linux Kernel Version2.4.4

Linux ≫ Linux Kernel Version2.4.5

Linux ≫ Linux Kernel Version2.4.6

Linux ≫ Linux Kernel Version2.4.7

Linux ≫ Linux Kernel Version2.4.8

Linux ≫ Linux Kernel Version2.4.9

Linux ≫ Linux Kernel Version2.4.10

Linux ≫ Linux Kernel Version2.4.11

Linux ≫ Linux Kernel Version2.4.12

Linux ≫ Linux Kernel Version2.4.13

Linux ≫ Linux Kernel Version2.4.14

Linux ≫ Linux Kernel Version2.4.15

Linux ≫ Linux Kernel Version2.4.16

Linux ≫ Linux Kernel Version2.4.17

Linux ≫ Linux Kernel Version2.4.18

Linux ≫ Linux Kernel Version2.4.18 Editionx86

Linux ≫ Linux Kernel Version2.4.18 Updatepre1

Linux ≫ Linux Kernel Version2.4.18 Updatepre2

Linux ≫ Linux Kernel Version2.4.18 Updatepre3

Linux ≫ Linux Kernel Version2.4.18 Updatepre4

Linux ≫ Linux Kernel Version2.4.18 Updatepre5

Linux ≫ Linux Kernel Version2.4.18 Updatepre6

Linux ≫ Linux Kernel Version2.4.18 Updatepre7

Linux ≫ Linux Kernel Version2.4.18 Updatepre8

Linux ≫ Linux Kernel Version2.4.19

Linux ≫ Linux Kernel Version2.4.19 Updatepre1

Linux ≫ Linux Kernel Version2.4.19 Updatepre2

Linux ≫ Linux Kernel Version2.4.19 Updatepre3

Linux ≫ Linux Kernel Version2.4.19 Updatepre4

Linux ≫ Linux Kernel Version2.4.19 Updatepre5

Linux ≫ Linux Kernel Version2.4.19 Updatepre6

Linux ≫ Linux Kernel Version2.4.20

Linux ≫ Linux Kernel Version2.4.21

Linux ≫ Linux Kernel Version2.4.21 Updatepre1

Linux ≫ Linux Kernel Version2.4.21 Updatepre4

Linux ≫ Linux Kernel Version2.4.21 Updatepre7

Linux ≫ Linux Kernel Version2.4.22

Linux ≫ Linux Kernel Version2.4.23

Linux ≫ Linux Kernel Version2.4.23 Updatepre9

Linux ≫ Linux Kernel Version2.4.23_ow2

Linux ≫ Linux Kernel Version2.4.24

Linux ≫ Linux Kernel Version2.4.24_ow1

Linux ≫ Linux Kernel Version2.4.25

Linux ≫ Linux Kernel Version2.4.26

Linux ≫ Linux Kernel Version2.4.27

Linux ≫ Linux Kernel Version2.4.27 Updatepre1

Linux ≫ Linux Kernel Version2.4.27 Updatepre2

Linux ≫ Linux Kernel Version2.4.27 Updatepre3

Linux ≫ Linux Kernel Version2.4.27 Updatepre4

Linux ≫ Linux Kernel Version2.4.27 Updatepre5

Linux ≫ Linux Kernel Version2.6.0

Linux ≫ Linux Kernel Version2.6.0 Updatetest1

Linux ≫ Linux Kernel Version2.6.0 Updatetest10

Linux ≫ Linux Kernel Version2.6.0 Updatetest11

Linux ≫ Linux Kernel Version2.6.0 Updatetest2

Linux ≫ Linux Kernel Version2.6.0 Updatetest3

Linux ≫ Linux Kernel Version2.6.0 Updatetest4

Linux ≫ Linux Kernel Version2.6.0 Updatetest5

Linux ≫ Linux Kernel Version2.6.0 Updatetest6

Linux ≫ Linux Kernel Version2.6.0 Updatetest7

Linux ≫ Linux Kernel Version2.6.0 Updatetest8

Linux ≫ Linux Kernel Version2.6.0 Updatetest9

Linux ≫ Linux Kernel Version2.6.1

Linux ≫ Linux Kernel Version2.6.1 Updaterc1

Linux ≫ Linux Kernel Version2.6.1 Updaterc2

Linux ≫ Linux Kernel Version2.6.2

Linux ≫ Linux Kernel Version2.6.3

Linux ≫ Linux Kernel Version2.6.4

Linux ≫ Linux Kernel Version2.6.5

Linux ≫ Linux Kernel Version2.6.6

Linux ≫ Linux Kernel Version2.6.6 Updaterc1

Linux ≫ Linux Kernel Version2.6.7

Linux ≫ Linux Kernel Version2.6.7 Updaterc1

Linux ≫ Linux Kernel Version2.6.8

Linux ≫ Linux Kernel Version2.6.8 Updaterc1

Linux ≫ Linux Kernel Version2.6.8 Updaterc2

Linux ≫ Linux Kernel Version2.6.8 Updaterc3

Linux ≫ Linux Kernel Version2.6.9 Update2.6.20

Linux ≫ Linux Kernel Version2.6_test9_cvs

Redhat ≫ Enterprise Linux Version2.1 Editionadvanced_server

Redhat ≫ Enterprise Linux Version2.1 Editionadvanced_server_ia64

Redhat ≫ Enterprise Linux Version2.1 Editionenterprise_server

Redhat ≫ Enterprise Linux Version2.1 Editionenterprise_server_ia64

Redhat ≫ Enterprise Linux Version2.1 Editionworkstation

Redhat ≫ Enterprise Linux Version2.1 Editionworkstation_ia64

Redhat ≫ Enterprise Linux Version3.0 Editionadvanced_server

Redhat ≫ Enterprise Linux Version3.0 Editionenterprise_server

Redhat ≫ Enterprise Linux Version3.0 Editionworkstation_server

Redhat ≫ Enterprise Linux Desktop Version3.0

Redhat ≫ Fedora Core Versioncore_2.0

Redhat ≫ Fedora Core Versioncore_3.0

Redhat ≫ Linux Advanced Workstation Version2.1 Editionia64

Redhat ≫ Linux Advanced Workstation Version2.1 Editionitanium_processor

Suse ≫ Suse Linux Version1.0 Editiondesktop

Suse ≫ Suse Linux Version8 Editionenterprise_server

Suse ≫ Suse Linux Version8.1

Suse ≫ Suse Linux Version8.2

Suse ≫ Suse Linux Version9.0

Suse ≫ Suse Linux Version9.0 Editionenterprise_server

Suse ≫ Suse Linux Version9.0 Editionx86_64

Suse ≫ Suse Linux Version9.1

Suse ≫ Suse Linux Version9.2

Trustix ≫ Secure Linux Version1.5

Trustix ≫ Secure Linux Version2.0

Trustix ≫ Secure Linux Version2.1

Trustix ≫ Secure Linux Version2.2

Turbolinux ≫ Turbolinux Server Version10.0

Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.

EPSS Metriken
Type	Source	Score	Percentile
EPSS	FIRST.org	0.07%	0.184

CVSS Metriken
Source	Base Score	Exploit Score	Impact Score	Vector string
nvd@nist.gov	7.2	3.9	10	AV:L/AC:L/Au:N/C:C/I:C/A:C

http://secunia.com/advisories/20162

http://secunia.com/advisories/20163

http://secunia.com/advisories/20202

http://secunia.com/advisories/20338

http://www.debian.org/security/2006/dsa-1067

http://www.debian.org/security/2006/dsa-1069

http://www.debian.org/security/2006/dsa-1070

http://www.debian.org/security/2006/dsa-1082

http://www.redhat.com/support/errata/RHSA-2004-504.html

http://www.redhat.com/support/errata/RHSA-2004-505.html

https://bugzilla.fedora.us/show_bug.cgi?id=2336

http://www.redhat.com/support/errata/RHSA-2004-537.html

Patch

Vendor Advisory

http://www.mandriva.com/security/advisories?name=MDKSA-2005:022

ftp://patches.sgi.com/support/free/security/advisories/20060402-01-U

http://secunia.com/advisories/19607

http://www.isec.pl/vulnerabilities/isec-0017-binfmt_elf.txt

http://www.securityfocus.com/bid/11646

https://exchange.xforce.ibmcloud.com/vulnerabilities/18025

http://www.redhat.com/support/errata/RHSA-2005-275.html

https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11195

https://nvd.nist.gov/vuln/detail/CVE-2004-1072

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2004-1072

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2004-1072

EUVD