NVD

Id
71085  
Name
CVE-2004-0658  
Description
Integer overflow in the hpsb_alloc_packet function (incorrectly reported as alloc_hpsb_packet) in IEEE 1394 (Firewire) driver 2.4 and 2.6 allows local users to cause a denial of service (crash) and possibly execute arbitrary code via the functions (1) raw1394_write, (2) state_connected, (3) handle_remote_request, or (4) hpsb_make_writebpacket.  
Reject
 
CVSS Version
2  
CVSS Score
7.2  
Severity
High  
CVSS Base Score
7.2  
CVSS Impact Subscore
10  
CVSS Exploit Subscore
3.9  
CVSS Vector
(AV:L/AC:L/Au:N/C:C/I:C/A:C)  
Pub Date
2017-07-18  
Published
2004-08-06  
Modified Date
2017-07-10  
Seq
2004-0658  

Actions

Related NVD References

Id NVD Id NVD No. Reference Actions
367069 71085 CVE-2004-0658 20040622 linux kernel IEEE1394(Firewire) driver integer overflow  View
367070 71085 CVE-2004-0658 linux-1394-integer-bo(16480)  View

Related JVN

Id Name Title Summary Cveinfo Name Cveinfo Id Nvdinfo Name Nvdinfo Id Cvssv2 Cvssv3 Jvnurl Published Date Last Updated Date Actions
62897 JVNDB-2004-000239 Linux Kernel IEEE 1394 のドライバにおける整数オーバーフローの脆弱性 Linux Kernel に含まれている IEEE 1394 ドライバの alloc_hpsb_packet() 関数には、引数に対する妥当性の確認が適切に行われていないため、整数オーバーフローが発生する脆弱性が存在します。 CVE-2004-0658 9085 CVE-2004-0658 71085 7.2 http://jvndb.jvn.jp/ja/contents/2004/JVNDB-2004-000239.html 2004-06-22 2007-04-01 View