cbcvebase.
CVE-2004-0834
published 2004-12-23

CVE-2004-0834: Format string vulnerability in Speedtouch USB driver before 1.3.1 allows local users to execute arbitrary code via (1) modem_run, (2) pppoa2, or (3) pppoa3.

PriorityP421high7.2CVSS 2.0
AVLACLAuNCCICAC
EPSS
0.43%
34.7th percentile
Format string vulnerability in Speedtouch USB driver before 1.3.1 allows local users to execute arbitrary code via (1) modem_run, (2) pppoa2, or (3) pppoa3.

Affected

16 ranges
VendorProductVersion rangeFixed in
gentoolinux
mandrakesoftmandrake_linux
mandrakesoftmandrake_linux
mandrakesoftmandrake_linux
mandrakesoftmandrake_linux
mandrakesoftmandrake_linux
mandrakesoftmandrake_linux
mandrakesoftmandrake_linux_corporate_server
mandrakesoftmandrake_multi_network_firewall
speedtouchspeedtouch_usb_driver
speedtouchspeedtouch_usb_driver
speedtouchspeedtouch_usb_driver
speedtouchspeedtouch_usb_driver
speedtouchspeedtouch_usb_driver
speedtouchspeedtouch_usb_driver
speedtouchspeedtouch_usb_driver
Stop checking back — get the weekly exploitation signal.

Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.