VYPR
Get started
← All advisories
Unrated severityNVD Advisory· Published Aug 6, 2004· Updated Apr 16, 2026

CVE-2004-0417

CVE-2004-0417

Description

Integer overflow in the "Max-dotdot" CVS protocol command (serve_max_dotdot) for CVS 1.12.x through 1.12.8, and 1.11.x through 1.11.16, may allow remote attackers to cause a server crash, which could cause temporary data to remain undeleted and consume disk space.

Affected products

29
  • Cvs/Cvs20 versions
    cpe:2.3:a:cvs:cvs:1.10.7:*:*:*:*:*:*:*+ 19 more
    • cpe:2.3:a:cvs:cvs:1.10.7:*:*:*:*:*:*:*
    • cpe:2.3:a:cvs:cvs:1.10.8:*:*:*:*:*:*:*
    • cpe:2.3:a:cvs:cvs:1.11:*:*:*:*:*:*:*
    • cpe:2.3:a:cvs:cvs:1.11.1:*:*:*:*:*:*:*
    • cpe:2.3:a:cvs:cvs:1.11.10:*:*:*:*:*:*:*
    • cpe:2.3:a:cvs:cvs:1.11.11:*:*:*:*:*:*:*
    • cpe:2.3:a:cvs:cvs:1.11.14:*:*:*:*:*:*:*
    • cpe:2.3:a:cvs:cvs:1.11.15:*:*:*:*:*:*:*
    • cpe:2.3:a:cvs:cvs:1.11.16:*:*:*:*:*:*:*
    • cpe:2.3:a:cvs:cvs:1.11.1_p1:*:*:*:*:*:*:*
    • cpe:2.3:a:cvs:cvs:1.11.2:*:*:*:*:*:*:*
    • cpe:2.3:a:cvs:cvs:1.11.3:*:*:*:*:*:*:*
    • cpe:2.3:a:cvs:cvs:1.11.4:*:*:*:*:*:*:*
    • cpe:2.3:a:cvs:cvs:1.11.5:*:*:*:*:*:*:*
    • cpe:2.3:a:cvs:cvs:1.11.6:*:*:*:*:*:*:*
    • cpe:2.3:a:cvs:cvs:1.12.1:*:*:*:*:*:*:*
    • cpe:2.3:a:cvs:cvs:1.12.2:*:*:*:*:*:*:*
    • cpe:2.3:a:cvs:cvs:1.12.5:*:*:*:*:*:*:*
    • cpe:2.3:a:cvs:cvs:1.12.7:*:*:*:*:*:*:*
    • cpe:2.3:a:cvs:cvs:1.12.8:*:*:*:*:*:*:*
  • OpenPKG/Openpkg3 versions
    cpe:2.3:a:openpkg:openpkg:*:*:*:*:*:*:*:*+ 2 more
    • cpe:2.3:a:openpkg:openpkg:*:*:*:*:*:*:*:*
    • cpe:2.3:a:openpkg:openpkg:1.3:*:*:*:*:*:*:*
    • cpe:2.3:a:openpkg:openpkg:2.0:*:*:*:*:*:*:*
  • Sgi/Propack2 versions
    cpe:2.3:a:sgi:propack:2.4:*:*:*:*:*:*:*+ 1 more
    • cpe:2.3:a:sgi:propack:2.4:*:*:*:*:*:*:*
    • cpe:2.3:a:sgi:propack:3.0:*:*:*:*:*:*:*
  • Gentoo/Linux
    cpe:2.3:o:gentoo:linux:1.4:*:*:*:*:*:*:*
  • OpenBSD/OpenBSD3 versions
    cpe:2.3:o:openbsd:openbsd:*:*:*:*:*:*:*:*+ 2 more
    • cpe:2.3:o:openbsd:openbsd:*:*:*:*:*:*:*:*
    • cpe:2.3:o:openbsd:openbsd:3.4:*:*:*:*:*:*:*
    • cpe:2.3:o:openbsd:openbsd:3.5:*:*:*:*:*:*:*

Patches

0

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

10

News mentions

0

No linked articles in our index yet.