CVE-2004-0424 - Integer overflow in the ip_setsockopt function in Linux kernel 2.4.22 through 2.4.25 and 2.6.1 throu

CVE-2004-0424

Summary

Integer overflow in the ip_setsockopt function in Linux kernel 2.4.22 through 2.4.25 and 2.6.1 through 2.6.3 allows local users to cause a denial of service (crash) or execute arbitrary code via the MCAST_MSFILTER socket option.

References

Vulnerable Configurations

cpe:2.3:a:sgi:propack:3.0:*:*:*:*:*:*:*
cpe:2.3:a:sgi:propack:3.0:*:*:*:*:*:*:*
cpe:2.3:o:linux:linux_kernel:2.4.22:*:*:*:*:*:*:*
cpe:2.3:o:linux:linux_kernel:2.4.22:*:*:*:*:*:*:*
cpe:2.3:o:linux:linux_kernel:2.4.23:*:*:*:*:*:*:*
cpe:2.3:o:linux:linux_kernel:2.4.23:*:*:*:*:*:*:*
cpe:2.3:o:linux:linux_kernel:2.4.23:pre9:*:*:*:*:*:*
cpe:2.3:o:linux:linux_kernel:2.4.23:pre9:*:*:*:*:*:*
cpe:2.3:o:linux:linux_kernel:2.4.23_ow2:*:*:*:*:*:*:*
cpe:2.3:o:linux:linux_kernel:2.4.23_ow2:*:*:*:*:*:*:*
cpe:2.3:o:linux:linux_kernel:2.4.24:*:*:*:*:*:*:*
cpe:2.3:o:linux:linux_kernel:2.4.24:*:*:*:*:*:*:*
cpe:2.3:o:linux:linux_kernel:2.4.24_ow1:*:*:*:*:*:*:*
cpe:2.3:o:linux:linux_kernel:2.4.24_ow1:*:*:*:*:*:*:*
cpe:2.3:o:linux:linux_kernel:2.4.25:*:*:*:*:*:*:*
cpe:2.3:o:linux:linux_kernel:2.4.25:*:*:*:*:*:*:*
cpe:2.3:o:linux:linux_kernel:2.6.1:*:*:*:*:*:*:*
cpe:2.3:o:linux:linux_kernel:2.6.1:*:*:*:*:*:*:*
cpe:2.3:o:linux:linux_kernel:2.6.1:rc1:*:*:*:*:*:*
cpe:2.3:o:linux:linux_kernel:2.6.1:rc1:*:*:*:*:*:*
cpe:2.3:o:linux:linux_kernel:2.6.1:rc2:*:*:*:*:*:*
cpe:2.3:o:linux:linux_kernel:2.6.1:rc2:*:*:*:*:*:*
cpe:2.3:o:linux:linux_kernel:2.6.2:*:*:*:*:*:*:*
cpe:2.3:o:linux:linux_kernel:2.6.2:*:*:*:*:*:*:*
cpe:2.3:o:linux:linux_kernel:2.6.3:*:*:*:*:*:*:*
cpe:2.3:o:linux:linux_kernel:2.6.3:*:*:*:*:*:*:*
cpe:2.3:o:slackware:slackware_linux:9.1:*:*:*:*:*:*:*
cpe:2.3:o:slackware:slackware_linux:9.1:*:*:*:*:*:*:*
cpe:2.3:o:slackware:slackware_linux:current:*:*:*:*:*:*:*
cpe:2.3:o:slackware:slackware_linux:current:*:*:*:*:*:*:*

CVSS

Base:	7.2 (as of 03-05-2018 - 01:29)
Impact:
Exploitability:

CWE

NVD-CWE-Other

CAPEC

Access

Vector	Complexity	Authentication
LOCAL	LOW	NONE

Impact

Confidentiality	Integrity	Availability
COMPLETE	COMPLETE	COMPLETE

cvss-vector via4

AV:L/AC:L/Au:N/C:C/I:C/A:C

oval via4

accepted

2013-04-29T04:12:24.661-04:00

class

vulnerability

contributors

name Aharon Chernin
organization SCAP.com, LLC
name Dragos Prisaca
organization G2, Inc.

definition_extensions

comment The operating system installed on the system is Red Hat Enterprise Linux 3
oval oval:org.mitre.oval:def:11782
comment CentOS Linux 3.x
oval oval:org.mitre.oval:def:16651

description

family

unix

oval:org.mitre.oval:def:11214

status

accepted

submitted

2010-07-09T03:56:16-04:00

title

version

accepted

2007-04-25T19:53:09.758-04:00

class

vulnerability

contributors

name Jay Beale
organization Bastille Linux
name Thomas R. Jones
organization Maitreya Security

description

family

unix

oval:org.mitre.oval:def:939

status

accepted

submitted

2004-05-10T12:00:00.000-04:00

title

Linux Kernel ip_setsockopt Integer Overflow

version

redhat via4

advisories

rhsa

id	RHSA-2004:183

rpms

kernel-0:2.4.21-9.0.3.EL
kernel-BOOT-0:2.4.21-9.0.3.EL
kernel-debuginfo-0:2.4.21-9.0.3.EL
kernel-doc-0:2.4.21-9.0.3.EL
kernel-hugemem-0:2.4.21-9.0.3.EL
kernel-hugemem-unsupported-0:2.4.21-9.0.3.EL
kernel-smp-0:2.4.21-9.0.3.EL
kernel-smp-unsupported-0:2.4.21-9.0.3.EL
kernel-source-0:2.4.21-9.0.3.EL
kernel-unsupported-0:2.4.21-9.0.3.EL

refmap via4

bid	10179
bugtraq	20040420 Linux kernel setsockopt MCAST_MSFILTER integer overflow
conectiva	CLA-2004:852
engarde	ESA-20040428-004
mandrake	MDKSA-2004:037
misc	http://www.isec.pl/vulnerabilities/isec-0015-msfilter.txt
sgi	20040504-01-U
slackware	SSA:2004-119
suse	SuSE-SA:2004:010
vulnwatch	20040420 Linux kernel setsockopt MCAST_MSFILTER integer overflow
xf	linux-ipsetsockopt-integer-bo(15907)

Last major update

03-05-2018 - 01:29

Published

07-07-2004 - 04:00

Last modified

03-05-2018 - 01:29