CVE-2004-1304
published 2005-01-10CVE-2004-1304: Stack-based buffer overflow in the ELF header parsing code in file before 4.12 allows attackers to execute arbitrary code via a crafted ELF file.
critical10CVSS 3.1
AVNACLAuNCCICAC
EXPLOIT
Stack-based buffer overflow in the ELF header parsing code in file before 4.12 allows attackers to execute arbitrary code via a crafted ELF file.
Affected
20 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| debian | file | < file 4.12 (bookworm) | file 4.12 (bookworm) |
| file | file | — | — |
| file | file | — | — |
| file | file | — | — |
| file | file | — | — |
| file | file | — | — |
| file | file | — | — |
| file | file | — | — |
| file | file | — | — |
| file | file | — | — |
| file | file | — | — |
| file | file | — | — |
| file | file | — | — |
| file_project | file | >= 0 < 4.12 | 4.12 |
| file_project | file | >= 0 < 4.12 | 4.12 |
| file_project | file | >= 0 < 4.12 | 4.12 |
| file_project | file | >= 0 < 4.12 | 4.12 |
| trustix | secure_linux | — | — |
| trustix | secure_linux | — | — |
| trustix | secure_linux | — | — |
CVSS provenance
nvd10.0CRITICALAV:N/AC:L/Au:N/C:C/I:C/A:C
osv10.0CRITICAL