CVE

CVE-2004-1333

Date: (C)2004-12-15   (M)2024-02-22

Integer overflow in the vc_resize function in the Linux kernel 2.4 and 2.6 before 2.6.10 allows local users to cause a denial of service (kernel crash) via a short new screen value, which leads to a buffer overflow.

CVSS Score and Metrics +CVSS Score and Metrics -

CVSS V2 Severity:
CVSS Score : 2.1
Exploit Score: 3.9
Impact Score: 2.9
CVSS V2 Metrics:
Access Vector: LOCAL
Access Complexity: LOW
Authentication: NONE
Confidentiality: NONE
Integrity: NONE
Availability: PARTIAL

Reference:

BID-11956

SECUNIA-17826

http://www.securitytrap.com/mail/full-disclosure/2004/Dec/0323.html

SECUNIA-20162

SECUNIA-20163

SECUNIA-20202

SECUNIA-20338

DSA-1067

DSA-1069

DSA-1070

DSA-1082

FLSA:152532

MDKSA-2005:218

MDKSA-2005:219

SUSE-SA:2005:018

USN-47-1

http://www.guninski.com/where_do_you_want_billg_to_go_today_2.html

linux-vcresize-dos(18523)