Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact
2.1
CVSSv2

CVE-2004-1335

Published: 15/12/2004 Updated: 14/02/2024
CVSS v2 Base Score: 2.1 | Impact Score: 2.9 | Exploitability Score: 3.9
VMScore: 215
Vector: AV:L/AC:L/Au:N/C:N/I:N/A:P
Subscribe to Linux

Vulnerability Summary

Memory leak in the ip_options_get function in the Linux kernel prior to 2.6.10 allows local users to cause a denial of service (memory consumption) by repeatedly calling the ip_cmsg_send function.

Vulnerable Product Search on Vulmon Subscribe to Product

linux linux kernel 2.4.18

linux linux kernel 2.4.15

redhat fedora core core_2.0

redhat linux 7.3

linux linux kernel 2.4.0

linux linux kernel 2.6.5

linux linux kernel 2.4.11

linux linux kernel 2.6.1

linux linux kernel 2.4.27

linux linux kernel 2.4.26

linux linux kernel 2.4.19

linux linux kernel 2.4.21

linux linux kernel 2.4.12

linux linux kernel 2.4.13

linux linux kernel 2.6.0

linux linux kernel 2.6.3

linux linux kernel 2.4.17

linux linux kernel 2.6.4

linux linux kernel 2.6_test9_cvs

linux linux kernel 2.6.7

linux linux kernel 2.4.23_ow2

linux linux kernel 2.4.23

linux linux kernel 2.6.2

linux linux kernel 2.6.8

redhat fedora core core_1.0

linux linux kernel 2.4.7

linux linux kernel 2.4.25

linux linux kernel 2.4.24

linux linux kernel 2.4.9

redhat linux 9.0

linux linux kernel 2.6.10

linux linux kernel 2.4.28

linux linux kernel 2.4.24_ow1

linux linux kernel 2.4.10

linux linux kernel 2.4.2

linux linux kernel 2.4.16

linux linux kernel 2.4.8

linux linux kernel 2.4.14

linux linux kernel 2.4.22

linux linux kernel 2.4.5

linux linux kernel 2.6.6

linux linux kernel 2.6.9

linux linux kernel 2.4.3

linux linux kernel 2.4.1

linux linux kernel 2.4.4

redhat fedora core core_3.0

linux linux kernel 2.4.6

linux linux kernel 2.4.20

Vendor Advisories

Red Hat: kernel security update
Synopsis kernel security update Type/Severity Security Advisory: Important Topic Updated kernel packages that fix several security issues in Red HatEnterprise Linux 3 are now available Description The Linux kernel handles the basic functions of the operating systemThis advisory includes f ...
Red Hat: kernel security update
Synopsis kernel security update Type/Severity Security Advisory: Important Topic Updated kernel packages that fix several security issues in Red HatEnterprise Linux 21 are now available Description The Linux kernel handles the basic functions of the operating systemThis advisory includes ...
Red Hat: kernel security update
Synopsis kernel security update Type/Severity Security Advisory: Important Topic Updated kernel packages that fix several security issues in Red HatEnterprise Linux 21 are now available Description The Linux kernel handles the basic functions of the operating systemThis advisory includes ...
Debian Security Advisories: DSA-1067-1 kernel-source-2.4.16 -- several vulnerabilities
Several local and remote vulnerabilities have been discovered in the Linux kernel that may lead to a denial of service or the execution of arbitrary code The Common Vulnerabilities and Exposures project identifies the following problems: CVE-2004-0427 A local denial of service vulnerability in do_fork() has been found CVE-2005-0489 A ...
Debian Security Advisories: DSA-1069-1 kernel-source-2.4.18 -- several vulnerabilities
Several local and remote vulnerabilities have been discovered in the Linux kernel that may lead to a denial of service or the execution of arbitrary code The Common Vulnerabilities and Exposures project identifies the following problems: CVE-2004-0427 A local denial of service vulnerability in do_fork() has been found CVE-2005-0489 A ...
Debian Security Advisories: DSA-1070-1 kernel-source-2.4.19 -- several vulnerabilities
Several local and remote vulnerabilities have been discovered in the Linux kernel that may lead to a denial of service or the execution of arbitrary code The Common Vulnerabilities and Exposures project identifies the following problems: CVE-2004-0427 A local denial of service vulnerability in do_fork() has been found CVE-2005-0489 A ...

Exploits

Exploit DB: Linux Kernel 2.4.28/2.6.9 - 'ip_options_get' Local Overflow
/* int overflow in ip_options_get * Copyright Georgi Guninski * Cannot be used in vulnerability databases (like securityfocus and mitre) * */ #include <unistdh> #include <stdlibh> #include <stdioh> #include <errnoh> #include <ctypeh> #include <stringh> #include <sys/typesh> #include <sys/socket ...

References

NVD-CWE-Otherhttp://www.securitytrap.com/mail/full-disclosure/2004/Dec/0323.htmlhttp://www.guninski.com/where_do_you_want_billg_to_go_today_2.htmlhttp://www.securityfocus.com/bid/11956http://www.redhat.com/support/errata/RHSA-2005-016.htmlhttp://www.debian.org/security/2006/dsa-1070http://www.debian.org/security/2006/dsa-1067http://www.debian.org/security/2006/dsa-1069http://www.redhat.com/support/errata/RHSA-2005-017.htmlhttp://secunia.com/advisories/20163http://secunia.com/advisories/20202http://www.debian.org/security/2006/dsa-1082http://secunia.com/advisories/20338http://marc.info/?l=bugtraq&m=110383108211524&w=2https://exchange.xforce.ibmcloud.com/vulnerabilities/18524https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11085https://access.redhat.com/errata/RHSA-2004:689https://nvd.nist.govhttps://www.exploit-db.com/exploits/692/https://www.debian.org/security/./dsa-1067
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-32886insecure direct object referenceCVE-2024-34342file inclusionCVE-2024-34562CVE-2024-34347CVE-2024-26026CVE-2024-4647unprivileged
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook