Published: 10/01/2005 Updated: 11/07/2017

CVSS v2 Base Score: 10 | Impact Score: 10 | Exploitability Score: 10

VMScore: 1000

Vector: AV:N/AC:L/Au:N/C:C/I:C/A:C

Stack-based buffer overflow in the ELF header parsing code in file prior to 4.12 allows malicious users to execute arbitrary code via a crafted ELF file.

Vulnerable Product	Search on Vulmon	Subscribe to Product
file file 4.3
file file 4.4
file file 4.1
file file 4.10
file file 4.7
file file 4.8
file file 4.11
file file 4.2
file file 4.9
file file 4.0
file file 4.5
file file 4.6
trustix secure linux 2.0
trustix secure linux 2.1
gentoo linux
trustix secure linux 2.2

source: wwwsecurityfocuscom/bid/11771/info The file command is affected by a buffer overflow vulnerability This issue is due to a failure of the application to properly validate string lengths in the affected file prior to copying them into static process buffers An attacker may leverage this issue to execute arbitrary code with the pr ...

NVD-CWE-Other http://www.securityfocus.com/bid/11771 http://www.gentoo.org/security/en/glsa/glsa-200412-07.xml http://www.trustix.net/errata/2004/0063/http://securitytracker.com/id?1012433 https://exchange.xforce.ibmcloud.com/vulnerabilities/18368 https://nvd.nist.gov https://www.exploit-db.com/exploits/24784/

Get Started

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Twitter Reddit Linkedin Facebook

CVE-2004-1304

Vulnerability Summary

Vulnerability Trend

Exploits

References

Vulmon Search

About

Products

Connect