CyberSec.Space Logo
Back to CVE Browser

CVE-2004-1485

HIGH
7.5
CVSS Severity Score
EPSS Score0.1190%
EPSS Percentile1.74th
PublishedDec 31, 2004
Last ModifiedApr 16, 2026

Vulnerability Description

Buffer overflow in the TFTP client in InetUtils 1.4.2 allows remote malicious DNS servers to execute arbitrary code via a large DNS response that is handled by the gethostbyname function.

Affected Platforms (CPE)

No CPE configurations currently published for this record.

References & Advisories

πŸ”— http://marc.info/?l=bugtraq&m=109882085912915&w=2
πŸ”— http://www.securityfocus.com/bid/11527
πŸ”— https://exchange.xforce.ibmcloud.com/vulnerabilities/17878
πŸ”— http://marc.info/?l=bugtraq&m=109882085912915&w=2
πŸ”— http://www.securityfocus.com/bid/11527
πŸ”— https://exchange.xforce.ibmcloud.com/vulnerabilities/17878

Related Vulnerabilities

CVE-2004-101210.0

The argument parser of the PARTIAL command in Cyrus IMAP Server 2.2.6 and earlier allows remote authenticated users to execute arb...

CVE-2004-090410.0

Integer overflow in the bitmap (BMP) decoder for Mozilla Firefox before the Preview Release, Mozilla before 1.7.3, and Thunderbird...

CVE-2004-129010.0

Buffer overflow in the process_moves function in pgn2web.c for pgn2web 0.3 allows remote attackers to execute arbitrary code via a...

CVE-2004-106710.0

Off-by-one error in the mysasl_canon_user function in Cyrus IMAP Server 2.2.9 and earlier leads to a buffer overflow, which may al...