CVE-2004-0456

Published: Dec 6, 2004Modified: Apr 16, 2026

7.6

Vector

AV:N/AC:H/Au:N/C:C/I:C/A:C

Exploitability: 4.9 / Impact: 10.0

Source: NVD

Description

Stack-based buffer overflow in pavuk 0.9pl28, 0.9pl27, and possibly other versions allows remote web sites to execute arbitrary code via a long HTTP Location header.

Affected (20)

Products: Pavuk: Pavuk · Debian: Debian Linux · Gentoo: Linux

1 product

1 product

1 product

Configuration A

2 vulnerable

Vulnerable Software	Affected Versions
Pavuk Pavuk	Version 0.928r1
Pavuk Pavuk	Version 0.9pl28i

Configuration B

18 vulnerable

Vulnerable Software	Affected Versions
Debian Debian Linux	Version 3.0
Debian Debian Linux	Version 3.0
Debian Debian Linux	Version 3.0
Debian Debian Linux	Version 3.0
Debian Debian Linux	Version 3.0
Debian Debian Linux	Version 3.0
Debian Debian Linux	Version 3.0
Debian Debian Linux	Version 3.0
Debian Debian Linux	Version 3.0
Debian Debian Linux	Version 3.0
Debian Debian Linux	Version 3.0
Debian Debian Linux	Version 3.0
Gentoo Linux	Version 1.1a
Gentoo Linux	Version 1.2
Gentoo Linux	Version 1.4
Gentoo Linux	Version 1.4 rc1
Gentoo Linux	Version 1.4 rc2
Gentoo Linux	Version 1.4 rc3