VYPR
Unrated severityNVD Advisory· Published Dec 6, 2004· Updated Jun 16, 2026

CVE-2004-0456

CVE-2004-0456

Description

Stack-based buffer overflow in pavuk 0.9pl28, 0.9pl27, and possibly other versions allows remote web sites to execute arbitrary code via a long HTTP Location header.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

21
  • Pavuk/Pavuk3 versions
    cpe:2.3:a:pavuk:pavuk:0.928r1:*:*:*:*:*:*:*+ 2 more
    • cpe:2.3:a:pavuk:pavuk:0.928r1:*:*:*:*:*:*:*
    • cpe:2.3:a:pavuk:pavuk:0.9pl28i:*:*:*:*:*:*:*
    • (no CPE)range: <=0.9pl28
  • Debian/linux12 versions
    cpe:2.3:o:debian:debian_linux:3.0:*:*:*:*:*:*:*+ 11 more
    • cpe:2.3:o:debian:debian_linux:3.0:*:*:*:*:*:*:*
    • cpe:2.3:o:debian:debian_linux:3.0:*:alpha:*:*:*:*:*
    • cpe:2.3:o:debian:debian_linux:3.0:*:arm:*:*:*:*:*
    • cpe:2.3:o:debian:debian_linux:3.0:*:hppa:*:*:*:*:*
    • cpe:2.3:o:debian:debian_linux:3.0:*:ia-32:*:*:*:*:*
    • cpe:2.3:o:debian:debian_linux:3.0:*:ia-64:*:*:*:*:*
    • cpe:2.3:o:debian:debian_linux:3.0:*:m68k:*:*:*:*:*
    • cpe:2.3:o:debian:debian_linux:3.0:*:mips:*:*:*:*:*
    • cpe:2.3:o:debian:debian_linux:3.0:*:mipsel:*:*:*:*:*
    • cpe:2.3:o:debian:debian_linux:3.0:*:ppc:*:*:*:*:*
    • cpe:2.3:o:debian:debian_linux:3.0:*:s-390:*:*:*:*:*
    • cpe:2.3:o:debian:debian_linux:3.0:*:sparc:*:*:*:*:*
  • cpe:2.3:o:gentoo:linux:1.1a:*:*:*:*:*:*:*+ 5 more
    • cpe:2.3:o:gentoo:linux:1.1a:*:*:*:*:*:*:*
    • cpe:2.3:o:gentoo:linux:1.2:*:*:*:*:*:*:*
    • cpe:2.3:o:gentoo:linux:1.4:*:*:*:*:*:*:*
    • cpe:2.3:o:gentoo:linux:1.4:rc1:*:*:*:*:*:*
    • cpe:2.3:o:gentoo:linux:1.4:rc2:*:*:*:*:*:*
    • cpe:2.3:o:gentoo:linux:1.4:rc3:*:*:*:*:*:*

Patches

Vulnerability mechanics

References

5

News mentions

0

No linked articles in our index yet.