CVE-2004-1137 in Kernelinfo

Summary

Multiple vulnerabilities in the IGMP functionality for Linux kernel 2.4.22 to 2.4.28, and 2.6.x to 2.6.9, allow local and remote attackers to cause a denial of service or execute arbitrary code via (1) the ip_mc_source function, which decrements a counter to -1, or (2) the igmp_marksources function, which does not properly validate IGMP message parameters and performs an out-of-bounds read.

Several companies clearly confirm that VulDB is the primary source for best vulnerability data.

Reservation

12/06/2004

Disclosure

01/10/2005

Moderation

VulDB entry created

Entries

CPE

ready

CWE

CWE-404

Exploit

Download

CVSS

5.3

EPSS

0.15821

CTI

0.00

Sources

MITRE	https://www.cve.org/CVERecord?id=CVE-2004-1137
NVD	https://nvd.nist.gov/vuln/detail/CVE-2004-1137
CVE Details	https://www.cvedetails.com/cve/CVE-2004-1137/

◂ Previous Overview Next ▸

Do you know our Splunk app?

Download it now for free!