cbcvebase.
CVE-2004-1915
published 2004-04-08

CVE-2004-1915: Buffer overflow in the parse_all_client_messages function in LCDproc 0.4.x up to 0.4.4 allows remote attackers to execute arbitrary code via a large number of…

PriorityP339high7.5CVSS 2.0
AVNACLAuNCPIPAP
EXPLOIT
EPSS
8.68%
94.5th percentile
Buffer overflow in the parse_all_client_messages function in LCDproc 0.4.x up to 0.4.4 allows remote attackers to execute arbitrary code via a large number of arguments.

Affected

13 ranges
VendorProductVersion rangeFixed in
debianlcdproc< lcdproc 0.4.5 (bookworm)lcdproc 0.4.5 (bookworm)
lcdproclcdproc
lcdproclcdproc
lcdproclcdproc
lcdproclcdproc
lcdproclcdproc
lcdproclcdproc
lcdproclcdproc
lcdproclcdproc
lcdproclcdproc>= 0 < 0.4.50.4.5
lcdproclcdproc>= 0 < 0.4.50.4.5
lcdproclcdproc>= 0 < 0.4.50.4.5
lcdproclcdproc>= 0 < 0.4.50.4.5

CVSS provenance

nvdv2.07.5HIGHAV:N/AC:L/Au:N/C:P/I:P/A:P
osv7.5HIGH
vendor_debian7.5HIGH
CVEs like this are exactly what “Exploited This Week” covers.

Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.