Vulnerability Database

308,681

Total vulnerabilities in the database

CVE-2004-1224

Off-by-one error in the mtr_curses_keyaction function for mtr 0.55 through 0.65 allows local users to hijack raw sockets, as demonstrated using the "s" keybinding, which leaves a buffer without a NULL terminator.

Published: Jan 10, 2005
Updated: Nov 9, 2025
CVE: CVE-2004-1224
Severity: Low
Exploit:

CVSS v2:

Severity: Low
Score: 4.6
AV:L/AC:L/Au:N/C:P/I:P/A:P

No CWE or OWASP classifications available.

Affected Software
References

Software	From	Fixed in
mtr / mtr	0.59	0.59.x
mtr / mtr	0.55	0.55.x
mtr / mtr	0.58	0.58.x
mtr / mtr	0.56	0.56.x
mtr / mtr	0.65	0.65.x
mtr / mtr	0.60	0.60.x
mtr / mtr	0.62	0.62.x
mtr / mtr	0.63	0.63.x
mtr / mtr	0.64	0.64.x
mtr / mtr	0.57	0.57.x
mtr / mtr	0.61	0.61.x

Deep Security Visibility Without the Complexity

SynScan provides clear, real-time security insights so you can monitor your attack surface, spot risks early, and act fast—without extra complexity.

No setup fees
5-min deployment
Cancel anytime

Book a Demo