CyberSec.Space Logo
Back to CVE Browser

CVE-2004-1916

HIGH
7.5
CVSS Severity Score
EPSS Score0.1640%
EPSS Percentile9.22th
PublishedApr 8, 2004
Last ModifiedApr 16, 2026

Vulnerability Description

Multiple buffer overflows in LCDProc 0.4.1, and possibly other 0.4.x versions up to 0.4.4, allows remote attackers to execute arbitrary code via (1) a long invalid command to parse_all_client_messages function, or (2) long argv command to test_func_func function.

Affected Platforms (CPE)

No CPE configurations currently published for this record.

References & Advisories

πŸ”— http://lists.omnipotent.net/pipermail/lcdproc/2004-April/008884.html
πŸ”— http://marc.info/?l=bugtraq&m=108146376315229&w=2
πŸ”— http://secunia.com/advisories/11333
πŸ”— http://security.gentoo.org/glsa/glsa-200404-19.xml
πŸ”— http://www.securityfocus.com/bid/10085
πŸ”— https://exchange.xforce.ibmcloud.com/vulnerabilities/15814
πŸ”— http://lists.omnipotent.net/pipermail/lcdproc/2004-April/008884.html
πŸ”— http://marc.info/?l=bugtraq&m=108146376315229&w=2

Related Vulnerabilities

CVE-2004-129010.0

Buffer overflow in the process_moves function in pgn2web.c for pgn2web 0.3 allows remote attackers to execute arbitrary code via a...

CVE-2004-101210.0

The argument parser of the PARTIAL command in Cyrus IMAP Server 2.2.6 and earlier allows remote authenticated users to execute arb...

CVE-2004-100610.0

Format string vulnerability in the log functions in dhcpd for dhcp 2.x allows remote DNS servers to execute arbitrary code via cer...

CVE-2004-105010.0

Heap-based buffer overflow in Internet Explorer 6 allows remote attackers to execute arbitrary code via long (1) SRC or (2) NAME a...