Unrated severityNVD Advisory· Published Dec 31, 2004· Updated Apr 16, 2026

CVE-2004-2409

Description

Buffer overflow in the sh_hash_compdata function for Samhain 1.8.9 through 2.0.1, when running in update mode ("-t update"), might allow attackers to execute arbitrary code.

Affected products

Samhain Labs/Samhain10 versions
cpe:2.3:a:samhain_labs:samhain:1.8.10:*:*:*:*:*:*:*+ 9 more
- cpe:2.3:a:samhain_labs:samhain:1.8.10:*:*:*:*:*:*:*
- cpe:2.3:a:samhain_labs:samhain:1.8.10a:*:*:*:*:*:*:*
- cpe:2.3:a:samhain_labs:samhain:1.8.10b:*:*:*:*:*:*:*
- cpe:2.3:a:samhain_labs:samhain:1.8.11:*:*:*:*:*:*:*
- cpe:2.3:a:samhain_labs:samhain:1.8.12:*:*:*:*:*:*:*
- cpe:2.3:a:samhain_labs:samhain:1.8.12a:*:*:*:*:*:*:*
- cpe:2.3:a:samhain_labs:samhain:1.8.12b:*:*:*:*:*:*:*
- cpe:2.3:a:samhain_labs:samhain:1.8.9:*:*:*:*:*:*:*
- cpe:2.3:a:samhain_labs:samhain:2.0.0:*:*:*:*:*:*:*
- cpe:2.3:a:samhain_labs:samhain:2.0.1:*:*:*:*:*:*:*

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

secunia.com/advisories/13130nvdPatchVendor Advisory
securitytracker.com/idnvdPatch
www.osvdb.org/11525nvdPatch
www.securityfocus.com/bid/11635nvdPatch
exchange.xforce.ibmcloud.com/vulnerabilities/18000nvd

News mentions

No linked articles in our index yet.

cvss	0.000
epss	0.000
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000