CVE-2004-1287

Published: Jan 10, 2005Modified: Apr 16, 2026

10.0

Vector

AV:N/AC:L/Au:N/C:C/I:C/A:C

Exploitability: 10.0 / Impact: 10.0

Source: NVD

Description

Buffer overflow in the error function in preproc.c for NASM 0.98.38 1.2 allows attackers to execute arbitrary code via a crafted asm file, a different vulnerability than CVE-2005-1194.

Affected (1)

Products: Nasm: Netwide Assembler

Nasm

1 product

Netwide Assembler

Configuration A

1 vulnerable

Vulnerable Software	Affected Versions
Nasm Netwide Assembler	Version 0.98.38

Related CWEs

CWE-787

Out-of-bounds Write

The product writes data past the end, or before the beginning, of the intended buffer.

References (8)

http://tigger.uic.edu/~jlongs2/holes/nasm.txt

Source: cve@mitre.org

ExploitVendor Advisory

http://www.redhat.com/support/errata/RHSA-2005-381.html

Source: cve@mitre.org

Not Applicable

https://exchange.xforce.ibmcloud.com/vulnerabilities/18540

Source: cve@mitre.org

Third Party AdvisoryVDB Entry

https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11299

Source: cve@mitre.org

Broken Link

http://tigger.uic.edu/~jlongs2/holes/nasm.txt

Source: af854a3a-2127-422b-91ae-364da2661108

ExploitVendor Advisory

http://www.redhat.com/support/errata/RHSA-2005-381.html

Source: af854a3a-2127-422b-91ae-364da2661108

Not Applicable

https://exchange.xforce.ibmcloud.com/vulnerabilities/18540

Source: af854a3a-2127-422b-91ae-364da2661108

Third Party AdvisoryVDB Entry

https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11299

Source: af854a3a-2127-422b-91ae-364da2661108

Broken Link

Timeline

No history available yet.