CVE
- Id
- 9500
- CVE No.
- CVE-2004-1072
- Status
- Candidate
- Description
- The binfmt_elf loader (binfmt_elf.c) in Linux kernel 2.4.x up to 2.4.27, and 2.6.x up to 2.6.8, may create an interpreter name string that is not NULL terminated, which could cause strings longer than PATH_MAX to be used, leading to buffer overflows that allow local users to cause a denial of service (hang) and possibly execute arbitrary code.
- Phase
- Assigned (20041129)
- Votes
- None (candidate not yet proposed)
- Comments
Related CVE References
| Id | CVE Id | CVE No. | Reference | Actions |
|---|---|---|---|---|
| 64090 | 9500 | CVE-2004-1072 | MISC:http://www.isec.pl/vulnerabilities/isec-0017-binfmt_elf.txt | View |
| 64091 | 9500 | CVE-2004-1072 | DEBIAN:DSA-1070 | View |
| 64092 | 9500 | CVE-2004-1072 | URL:http://www.debian.org/security/2006/dsa-1070 | View |
| 64093 | 9500 | CVE-2004-1072 | DEBIAN:DSA-1067 | View |
| 64094 | 9500 | CVE-2004-1072 | URL:http://www.debian.org/security/2006/dsa-1067 | View |
| 64095 | 9500 | CVE-2004-1072 | DEBIAN:DSA-1069 | View |
| 64096 | 9500 | CVE-2004-1072 | URL:http://www.debian.org/security/2006/dsa-1069 | View |
| 64097 | 9500 | CVE-2004-1072 | DEBIAN:DSA-1082 | View |
| 64098 | 9500 | CVE-2004-1072 | URL:http://www.debian.org/security/2006/dsa-1082 | View |
| 64099 | 9500 | CVE-2004-1072 | FEDORA:FLSA:2336 | View |
| 64100 | 9500 | CVE-2004-1072 | URL:https://bugzilla.fedora.us/show_bug.cgi?id=2336 | View |
| 64101 | 9500 | CVE-2004-1072 | MANDRAKE:MDKSA-2005:022 | View |
| 64102 | 9500 | CVE-2004-1072 | URL:http://www.mandriva.com/security/advisories?name=MDKSA-2005:022 | View |
| 64103 | 9500 | CVE-2004-1072 | REDHAT:RHSA-2004:537 | View |
| 64104 | 9500 | CVE-2004-1072 | URL:http://www.redhat.com/support/errata/RHSA-2004-537.html | View |
| 64105 | 9500 | CVE-2004-1072 | REDHAT:RHSA-2005:275 | View |
| 64106 | 9500 | CVE-2004-1072 | URL:http://www.redhat.com/support/errata/RHSA-2005-275.html | View |
| 64107 | 9500 | CVE-2004-1072 | REDHAT:RHSA-2004:504 | View |
| 64108 | 9500 | CVE-2004-1072 | URL:http://www.redhat.com/support/errata/RHSA-2004-504.html | View |
| 64109 | 9500 | CVE-2004-1072 | REDHAT:RHSA-2004:505 | View |
| 64110 | 9500 | CVE-2004-1072 | URL:http://www.redhat.com/support/errata/RHSA-2004-505.html | View |
| 64111 | 9500 | CVE-2004-1072 | SGI:20060402-01-U | View |
| 64112 | 9500 | CVE-2004-1072 | URL:ftp://patches.sgi.com/support/free/security/advisories/20060402-01-U | View |
| 64113 | 9500 | CVE-2004-1072 | BID:11646 | View |
| 64114 | 9500 | CVE-2004-1072 | URL:http://www.securityfocus.com/bid/11646 | View |
| 64115 | 9500 | CVE-2004-1072 | OVAL:oval:org.mitre.oval:def:11195 | View |
| 64116 | 9500 | CVE-2004-1072 | URL:http://oval.mitre.org/repository/data/getDef?id=oval:org.mitre.oval:def:11195 | View |
| 64117 | 9500 | CVE-2004-1072 | SECUNIA:20162 | View |
| 64118 | 9500 | CVE-2004-1072 | URL:http://secunia.com/advisories/20162 | View |
| 64119 | 9500 | CVE-2004-1072 | SECUNIA:20163 | View |
| 64120 | 9500 | CVE-2004-1072 | URL:http://secunia.com/advisories/20163 | View |
| 64121 | 9500 | CVE-2004-1072 | SECUNIA:20202 | View |
| 64122 | 9500 | CVE-2004-1072 | URL:http://secunia.com/advisories/20202 | View |
| 64123 | 9500 | CVE-2004-1072 | SECUNIA:20338 | View |
| 64124 | 9500 | CVE-2004-1072 | URL:http://secunia.com/advisories/20338 | View |
| 64125 | 9500 | CVE-2004-1072 | SECUNIA:19607 | View |
| 64126 | 9500 | CVE-2004-1072 | URL:http://secunia.com/advisories/19607 | View |
| 64127 | 9500 | CVE-2004-1072 | XF:linux-elf-setuid-gain-privileges(18025) | View |
Related JVN
| Id | JVN No. | Title | Summary | CVE No. | CVE Id | CVSS_v2 | CVSS_v3 | JVN URL | Actions |
|---|---|---|---|---|---|---|---|---|---|
| 63142 | JVNDB-2004-000484 | Linux Kernel の open_exec() 関数における不正に ELF バイナリを読み込まれる脆弱性 | ------------ | CVE-2004-1073 | 9500 | 2.1 | http://jvndb.jvn.jp/ja/contents/2004/JVNDB-2004-000484.html | View |
