CVE-2004-0424

Published: Apr 30, 2004

Modified: Aug 8, 2024

PUBLISHED

Description

Integer overflow in the ip_setsockopt function in Linux kernel 2.4.22 through 2.4.25 and 2.6.1 through 2.6.3 allows local users to cause a denial of service (crash) or execute arbitrary code via the MCAST_MSFILTER socket option.

Vendor	Product	Versions
n/a	n/a	affected `n/a`

References

SSA:2004-119

vendor-advisory

x_refsource_SLACKWARE

SuSE-SA:2004:010

vendor-advisory

x_refsource_SUSE

oval:org.mitre.oval:def:939

vdb-entry

signature

x_refsource_OVAL

oval:org.mitre.oval:def:11214

vdb-entry

signature

x_refsource_OVAL

RHSA-2004:183

vendor-advisory

x_refsource_REDHAT

MDKSA-2004:037

vendor-advisory

x_refsource_MANDRAKE

linux-ipsetsockopt-integer-bo(15907)

vdb-entry

x_refsource_XF

10179

vdb-entry

x_refsource_BID

ESA-20040428-004

vendor-advisory

x_refsource_ENGARDE

http://www.isec.pl/vulnerabilities/isec-0015-msfilter.txt

x_refsource_MISC

CLA-2004:852

vendor-advisory

x_refsource_CONECTIVA

20040420 Linux kernel setsockopt MCAST_MSFILTER integer overflow

mailing-list

x_refsource_BUGTRAQ

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Start Training

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

Scan Now

CVE-2004-0424

Description

Affected Products

References