CVE-2004-0317 : Buffer overflow in eauth in Load Sharing Facility 4.x, 5.x, and 6.x allows local users or remote attackers within the LS

Buffer overflow in eauth in Load Sharing Facility 4.x, 5.x, and 6.x allows local users or remote attackers within the LSF cluster to cause a denial of service (segmentation fault) and possibly execute arbitrary code via a long LSF_From_PC parameter.

Published 2004-11-23 05:00:00

Updated 2017-07-11 01:30:04

Source MITRE

View at NVD, CVE.org

Vulnerability category: OverflowMemory CorruptionExecute codeDenial of service

Exploit prediction scoring system (EPSS) score for CVE-2004-0317

Probability of exploitation activity in the next 30 days: 1.26%

Percentile, the proportion of vulnerabilities that are scored at or less: ~ 85 % EPSS Score History EPSS FAQ

CVSS scores for CVE-2004-0317

Base Score	Base Severity	CVSS Vector	Exploitability Score	Impact Score	Score Source
10.0	HIGH	AV:N/AC:L/Au:N/C:C/I:C/A:C	10.0	10.0	NIST
Access Vector: Network Access Complexity: Low Authentication: None Confidentiality Impact: Complete Integrity Impact: Complete Availability Impact: Complete

References for CVE-2004-0317

https://exchange.xforce.ibmcloud.com/vulnerabilities/15282
http://www.securityfocus.com/bid/9719

Patch;Vendor Advisory
http://marc.info/?l=bugtraq&m=107756611501236&w=2

Products affected by CVE-2004-0317

Platform » LSF » Version: 4.0
cpe:2.3:a:platform:lsf:4.0:*:*:*:*:*:*:*
Matching versions
Platform » LSF » Version: 4.2
cpe:2.3:a:platform:lsf:4.2:*:*:*:*:*:*:*
Matching versions
Platform » LSF » Version: 6.0
cpe:2.3:a:platform:lsf:6.0:*:*:*:*:*:*:*
Matching versions
Platform » LSF » Version: 5.0
cpe:2.3:a:platform:lsf:5.0:*:*:*:*:*:*:*
Matching versions
Platform » LSF » Version: 5.1
cpe:2.3:a:platform:lsf:5.1:*:*:*:*:*:*:*
Matching versions

Vulnerability Details : CVE-2004-0317

Exploit prediction scoring system (EPSS) score for CVE-2004-0317

CVSS scores for CVE-2004-0317

References for CVE-2004-0317

Products affected by CVE-2004-0317