CVE-2004-2002

CWE-49 CWE-50 CWE-42 CWE-23018 documents7 sources

Severity

5.0MEDIUM

EPSS

0.7%

top 27.11%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

SGI Irix

Timeline

PublishedMay 5

Latest updateMay 3

Description

Unknown vulnerability in SGI IRIX 6.5 through 6.5.22m allows remote attackers to cause a denial of service via a certain UDP packet.

CVSS vector

AV:N/AC:L/C:N/I:N/A:PExploitability: 10.0 | Impact: 2.9

Affected Packages1 packages

▶NVDsgi/irix65 versions+64

Patches

Patch: patches.sgi.com ↗Patch: patches.sgi.com ↗

🔴Vulnerability Details

GHSA

GHSA-g246-r9p3-4qh3: Unknown vulnerability in SGI IRIX 6↗2022-05-03

▶

CVEList

CVE-2004-2002: Unknown vulnerability in SGI IRIX 6↗2005-05-10

▶

💥Exploits & PoCs

Exploit-DB

PMB Services 3.0.13 - Multiple Remote File Inclusions↗2007-03-09

▶

Exploit-DB

Microsoft Excel 95/97/2000/2002/2003/2004 - Malformed Range Memory Corruption↗2005-12-08

▶

Exploit-DB

Sysinternals Regmon 6.11 - Local Denial of Service↗2004-08-25

▶

Exploit-DB

Norton AntiVirus - Denial of Service↗2004-07-12

▶

Exploit-DB

Comersus Open Technologies Comersus 5.0 - 'comersus_gatewayPayPal.asp' Price Manipulation↗2004-07-07

▶

📋Vendor Advisories

Red Hat

security flaw↗2004-11-02

▶

Red Hat

CVE-2004-1717: Multiple buffer overflows in the psscan function in ps↗

▶

📐Framework References

CWE

Path Equivalence: 'filename/' (Trailing Slash)

▶

CWE

Path Equivalence: '//multiple/leading/slash'

▶

CWE

Path Equivalence: 'filename.' (Trailing Dot)↗

▶

CWE

Improper Handling of Missing Values

▶

💬Community

Bugzilla

CVE-2004-1006 security flaw↗2018-08-16

▶

Bugzilla

CAN-2003-0977 fix pushed for RH9, but not FC1↗2004-03-20

▶