Vulnerability Database

289,697

Total vulnerabilities in the database

CVE-2004-1224

Off-by-one error in the mtr_curses_keyaction function for mtr 0.55 through 0.65 allows local users to hijack raw sockets, as demonstrated using the "s" keybinding, which leaves a buffer without a NULL terminator.

  • Published: Jan 10, 2005
  • Updated: Apr 13, 2023
  • CVE: CVE-2004-1224
  • Severity: Low
  • Exploit:

CVSS v2:

  • Severity: Low
  • Score: 4.6
  • AV:L/AC:L/Au:N/C:P/I:P/A:P

No CWE or OWASP classifications available.

Software From Fixed in
mtr / mtr 0.59 0.59.x
mtr / mtr 0.55 0.55.x
mtr / mtr 0.58 0.58.x
mtr / mtr 0.56 0.56.x
mtr / mtr 0.65 0.65.x
mtr / mtr 0.60 0.60.x
mtr / mtr 0.62 0.62.x
mtr / mtr 0.63 0.63.x
mtr / mtr 0.64 0.64.x
mtr / mtr 0.57 0.57.x
mtr / mtr 0.61 0.61.x