CVE-2004-2392
published 2004-12-31CVE-2004-2392: libuser 0.51.7 allows attackers to cause a denial of service (crash or disk consumption) via unknown attack vectors, related to read failures and other bugs.
PriorityP412medium5CVSS 2.0
AVNACLAuNCNINAP
EPSS
1.54%
71.9th percentile
libuser 0.51.7 allows attackers to cause a denial of service (crash or disk consumption) via unknown attack vectors, related to read failures and other bugs.
Affected
4 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| mandrakesoft | mandrake_linux | — | — |
| mandrakesoft | mandrake_linux | — | — |
| mandrakesoft | mandrake_linux | — | — |
| mandrakesoft | mandrake_linux_corporate_server | — | — |
CVSS provenance
nvdv2.05.0MEDIUMAV:N/AC:L/Au:N/C:N/I:N/A:P
vendor_redhat5.0MEDIUM
Stop checking back — get the weekly exploitation signal.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
Red Hat
security flaw
vendor_redhat·2004-04-06·CVSS 5.0
CVE-2004-2392 [MEDIUM] security flaw
security flaw
libuser 0.51.7 allows attackers to cause a denial of service (crash or disk consumption) via unknown attack vectors, related to read failures and other bugs.
GHSA
GHSA-gcfp-8ccc-4pp3: libuser 0
ghsa_unreviewed·2022-04-29
CVE-2004-2392 [MEDIUM] GHSA-gcfp-8ccc-4pp3: libuser 0
libuser 0.51.7 allows attackers to cause a denial of service (crash or disk consumption) via unknown attack vectors, related to read failures and other bugs.
No detection rules found.
No public exploits indexed.
Bugzilla
CVE-2004-2392 security flaw
bugzilla·2018-08-16·CVSS 5.0
CVE-2004-2392 [MEDIUM] CVE-2004-2392 security flaw
CVE-2004-2392 security flaw
Flaw bug created to hold information about an old flaw we knew something about. For more details see the MITRE CVE description.
Discussion:
MITRE description:
libuser 0.51.7 allows attackers to cause a denial of service (crash or disk consumption) via unknown attack vectors, related to read failures and other bugs.
Bugzilla
CVE-2004-2392 libuser serious programming bugs
bugzilla·2005-10-22·CVSS 5.0
CVE-2004-2392 [MEDIUM] CVE-2004-2392 libuser serious programming bugs
CVE-2004-2392 libuser serious programming bugs
Product Management has reviewed and declined this request. You may appeal this
decision by reopening this request.
http://securitytracker.com/id?1010187http://www.mandriva.com/security/advisories?name=MDKSA-2004:044http://www.redhat.com/support/errata/RHSA-2005-770.htmlhttp://www.securityfocus.com/bid/10368https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=120168https://exchange.xforce.ibmcloud.com/vulnerabilities/16188http://securitytracker.com/id?1010187http://www.mandriva.com/security/advisories?name=MDKSA-2004:044http://www.redhat.com/support/errata/RHSA-2005-770.htmlhttp://www.securityfocus.com/bid/10368https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=120168https://exchange.xforce.ibmcloud.com/vulnerabilities/16188
2004-12-31
Published