Lucene search

[email protected]CVE-2004-0619

HistoryDec 06, 2004 - 5:00 a.m.

CVE-2004-0619

2004-12-0605:00:00

NVD-CWE-Other

[email protected]

web.nvd.nist.gov

cve-2004-0619

linux

broadcom

cryptonet

integer overflow

denial of service

buffer overflow

nvd

7.8 High

AI Score

Confidence

High

7.2 High

CVSS2

Access Vector

LOCAL

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:L/AC:L/Au:N/C:C/I:C/A:C

0.001 Low

EPSS

Percentile

24.9%

JSON

Integer overflow in the ubsec_keysetup function for Linux Broadcom 5820 cryptonet driver allows local users to cause a denial of service (crash) and possibly execute arbitrary code via a negative add_dsa_buf_bytes variable, which leads to a buffer overflow.

CPENameOperatorVersion
redhat:fedora_coreredhat fedora coreeqcore_1.0
redhat:linuxredhat linuxeq8.0
redhat:kernelredhat kerneleq2.4.20-8

CPE	Name	Operator	Version
redhat:fedora_core	redhat fedora core	eq	core_1.0
redhat:linux	redhat linux	eq	8.0
redhat:kernel	redhat kernel	eq	2.4.20-8

References

marc.info/?l=bugtraq&m=108802653409053&w=2

secunia.com/advisories/11936

www.ciac.org/ciac/bulletins/p-047.shtml

www.redhat.com/support/errata/RHSA-2004-549.html

www.redhat.com/support/errata/RHSA-2005-283.html

www.securityfocus.com/bid/10599

exchange.xforce.ibmcloud.com/vulnerabilities/16459

oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A9773

7.8 High

AI Score

Confidence

High

7.2 High

CVSS2

Access Vector

LOCAL

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:L/AC:L/Au:N/C:C/I:C/A:C

0.001 Low

EPSS

Percentile

24.9%

JSON

Related for CVE-2004-0619

nessus2 redhat2 centos1