Home > Vulnerability Database > CVE-2004-0109

Mend.io Vulnerability Database

CVE-2004-0109

Date: April 15, 2004

Buffer overflow in the ISO9660 file system component for Linux kernel 2.4.x, 2.5.x and 2.6.x, allows local users with physical access to overflow kernel memory and execute arbitrary code via a malformed CD containing a long symbolic link entry.

Severity Score

5.9

Related Resources (45)

Url: https://nvd.nist.gov/vuln/detail/CVE-2004-0109

Url: http://www.debian.org/security/2004/dsa-480

Url: http://www.debian.org/security/2004/dsa-481

Url: http://rhn.redhat.com/errata/RHSA-2004-166.html

Url: http://www.debian.org/security/2004/dsa-482

Url: https://people.canonical.com/~ubuntu-security/cve/CVE-2004-0109

Url: http://www.turbolinux.com/security/2004/TLSA-2004-14.txt

Url: http://secunia.com/advisories/11373

Url: http://secunia.com/advisories/11494

Url: http://secunia.com/advisories/11470

Url: http://www.redhat.com/support/errata/RHSA-2004-183.html

Url: http://www.redhat.com/support/errata/RHSA-2004-106.html

Url: http://secunia.com/advisories/12003

Url: http://secunia.com/advisories/11891

Url: ftp://patches.sgi.com/support/free/security/advisories/20040504-01-U.asc

Url: http://www.idefense.com/application/poi/display?id=101&type=vulnerabilities

Url: http://www.ciac.org/ciac/bulletins/o-121.shtml

Url: https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10733

Url: http://www.mandriva.com/security/advisories?name=MDKSA-2004:029

Url: http://secunia.com/advisories/11518

Url: http://distro.conectiva.com.br/atualizacoes/?id=a&anuncio=000846

Url: http://marc.info/?l=bugtraq&m=108213675028441&w=2

Url: https://exchange.xforce.ibmcloud.com/vulnerabilities/15866

Url: http://www.debian.org/security/2004/dsa-479

Url: http://www.debian.org/security/2004/dsa-495

Url: http://secunia.com/advisories/11469

Url: http://secunia.com/advisories/11986

Url: http://www.linuxsecurity.com/advisories/engarde_advisory-4285.html

Url: http://secunia.com/advisories/11626

Url: http://www.debian.org/security/2004/dsa-491

Url: http://secunia.com/advisories/11429

Url: https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A940

Url: http://www.novell.com/linux/security/advisories/2004_09_kernel.html

Url: http://secunia.com/advisories/11361

Url: http://security.gentoo.org/glsa/glsa-200407-02.xml

Url: http://secunia.com/advisories/11362

Url: http://secunia.com/advisories/11464

Url: http://secunia.com/advisories/11486

Url: http://secunia.com/advisories/11861

Url: http://www.securityfocus.com/bid/10141

Url: ftp://patches.sgi.com/support/free/security/advisories/20040405-01-U.asc

Url: http://www.redhat.com/support/errata/RHSA-2004-105.html

Url: http://www.ciac.org/ciac/bulletins/o-127.shtml

Url: http://www.debian.org/security/2004/dsa-489

Url: https://www.mend.io/vulnerability-database/CVE-2004-0109

Severity Score

5.9

CVSS v3.1

Base Score:	5.9
Attack Vector (AV):	LOCAL
Attack Complexity (AC):	LOW
Privileges Required (PR):	NONE
User Interaction (UI):	NONE
Scope (S):	UNCHANGED
Confidentiality (C):	LOW
Integrity (I):	LOW
Availability (A):	LOW

CVSS v2

Base Score:	4.6
Access Vector (AV):	LOCAL
Access Complexity (AC):	LOW
Authentication (AU):	NONE
Confidentiality (C):	PARTIAL
Integrity (I):	PARTIAL
Availability (A):	PARTIAL
Additional information:

Mend.io Vulnerability Database

We found results for “”

CVE-2004-0109

Date: April 15, 2004

Severity Score

Related Resources (45)

Severity Score

CVSS v3.1

CVSS v2

Do you need more information?