CVE-2004-0424 Common Vulnerabilities and Exposures

Upstream information

CVE-2004-0424 at MITRE

Description

Integer overflow in the ip_setsockopt function in Linux kernel 2.4.22 through 2.4.25 and 2.6.1 through 2.6.3 allows local users to cause a denial of service (crash) or execute arbitrary code via the MCAST_MSFILTER socket option.

SUSE information

Overall state of this security issue: Resolved

This issue is currently rated as having important severity.

CVSS v2 Scores
	National Vulnerability Database
Base Score	7.2
Vector	AV:L/AC:L/Au:N/C:C/I:C/A:C
Access Vector	Local
Access Complexity	Low
Authentication	None
Confidentiality Impact	Complete
Integrity Impact	Complete
Availability Impact	Complete

SUSE Bugzilla entry: 54207 [RESOLVED / FIXED]

SUSE Security Advisories:

SuSE-SA:2004:010, published Tuesday, May 5th 2004 02:30 MEST

SUSE Timeline for this CVE

CVE page created: Fri Jun 28 00:50:20 2013
CVE page last modified: Fri Dec 8 16:09:35 2023