Vulnerabilities > Linux > Linux Kernel > 2.4.28

DATE CVE VULNERABILITY TITLE RISK
2005-01-10 CVE-2004-1137 Multiple vulnerabilities in the IGMP functionality for Linux kernel 2.4.22 to 2.4.28, and 2.6.x to 2.6.9, allow local and remote attackers to cause a denial of service or execute arbitrary code via (1) the ip_mc_source function, which decrements a counter to -1, or (2) the igmp_marksources function, which does not properly validate IGMP message parameters and performs an out-of-bounds read.
network
low complexity
linux ubuntu
critical
 10.0
10
2005-01-10 CVE-2004-1016 Local Denial of Service vulnerability in Linux Kernel SCM_SEND
The scm_send function in the scm layer for Linux kernel 2.4.x up to 2.4.28, and 2.6.x up to 2.6.9, allows local users to cause a denial of service (system hang) via crafted auxiliary messages that are passed to the sendmsg function, which causes a deadlock condition.
local
low complexity
linux ubuntu
2.1
2.1
2004-12-31 CVE-2004-2731 Numeric Errors vulnerability in Linux Kernel
Multiple integer overflows in Sbus PROM driver (drivers/sbus/char/openprom.c) for the Linux kernel 2.4.x up to 2.4.27, 2.6.x up to 2.6.7, and possibly later versions, allow local users to execute arbitrary code by specifying (1) a small buffer size to the copyin_string function or (2) a negative buffer size to the copyin function.
local
linux CWE-189
4.4
4.4
2004-12-31 CVE-2004-2607 Unspecified vulnerability in Linux Kernel
A numeric casting discrepancy in sdla_xfer in Linux kernel 2.6.x up to 2.6.5 and 2.4 up to 2.4.29-rc1 allows local users to read portions of kernel memory via a large len argument, which is received as an int but cast to a short, which prevents a read loop from filling a buffer.
local
low complexity
linux
2.1
2.1
2004-12-23 CVE-2004-0816 Integer Underflow (Wrap or Wraparound) vulnerability in Linux Kernel
Integer underflow in the firewall logging rules for iptables in Linux before 2.6.8 allows remote attackers to cause a denial of service (application crash) via a malformed IP packet.
network
low complexity
linux CWE-191
7.5
7.5
2004-05-26 CVE-2004-2135 Information Disclosure vulnerability in Linux Kernel Cryptoloop
cryptoloop on Linux kernel 2.6.x, when used on certain file systems with a block size 1024 or greater, has certain "IV computation" weaknesses that allow watermarked files to be detected without decryption.
local
low complexity
linux
2.1
2.1