CVE-2004-1702
published 2004-08-09CVE-2004-1702: The AuthenticationDialogue function in cfservd for Cfengine 2.0.0 to 2.1.7p1 does not properly check the return value of the ReceiveTransaction function, which…
medium5CVSS 3.1
AVNACLAuNCNINAP
The AuthenticationDialogue function in cfservd for Cfengine 2.0.0 to 2.1.7p1 does not properly check the return value of the ReceiveTransaction function, which leads to a failed malloc call and triggers to a null dereference, which allows remote attackers to cause a denial of service (crash).
Affected
11 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| gnu | cfengine | — | — |
| gnu | cfengine | — | — |
| gnu | cfengine | — | — |
| gnu | cfengine | — | — |
| gnu | cfengine | — | — |
| gnu | cfengine | — | — |
| gnu | cfengine | — | — |
| gnu | cfengine | — | — |
| gnu | cfengine | — | — |
| gnu | cfengine | — | — |
| gnu | cfengine | — | — |