Vulnerabilities > CVE-2004-2269 - Local Security vulnerability in Passive Asset Detection System

CVSS 7.2 - HIGH

Attack vector

LOCAL

Attack complexity

LOW

Privileges required

NONE

Confidentiality impact

COMPLETE

Integrity impact

COMPLETE

Availability impact

COMPLETE

local

low complexity

matt-shelton

NVD

Published: 2004-12-31

Updated: 2017-07-11

Summary

Stack-based buffer overflow in pads.c in Passive Asset Detection System (Pads) might allow local users to execute arbitrary code via a long report file name argument. NOTE: since Pads is not normally installed setuid, this may not be a vulnerability.

Vulnerable Configurations

Part	Description	Count
Application	Matt_Shelton Matt Shelton Pads 1.1	1

References

http://archives.neohapsis.com/archives/fulldisclosure/2004-08/0834.html
http://www.osvdb.org/9067
https://exchange.xforce.ibmcloud.com/vulnerabilities/17038