CVE-2004-1014 : Detail

CVE-2004-1014

2.46%V4
Network
2004-12-08
04h00 +00:00
2018-10-19
12h57 +00:00
CVE.org
NVD
Notifications for a CVE
Stay informed of any changes for a specific CVE.
Notifications manage

CVE Descriptions

statd in nfs-utils 1.257 and earlier does not ignore the SIGPIPE signal, which allows remote attackers to cause a denial of service (server process crash) via a TCP connection that is prematurely terminated.

CVE Informations

Metrics

Metrics Score Severity CVSS Vector Source
V2 5 AV:N/AC:L/Au:N/C:N/I:N/A:P nvd@nist.gov

EPSS

EPSS is a scoring model that predicts the likelihood of a vulnerability being exploited.

EPSS Score

The EPSS model produces a probability score between 0 and 1 (0 and 100%). The higher the score, the greater the probability that a vulnerability will be exploited.

EPSS Percentile

The percentile is used to rank CVE according to their EPSS score. For example, a CVE in the 95th percentile according to its EPSS score is more likely to be exploited than 95% of other CVE. Thus, the percentile is used to compare the EPSS score of a CVE with that of other CVE.
EPSS First.org

Products Mentioned

Configuraton 0

Nfs>>Nfs-utils >> Version 1.0.6

    Configuraton 0

    Debian>>Debian_linux >> Version 3.0

    Debian>>Debian_linux >> Version 3.0

      Debian>>Debian_linux >> Version 3.0

        Debian>>Debian_linux >> Version 3.0

          Debian>>Debian_linux >> Version 3.0

            Debian>>Debian_linux >> Version 3.0

              Debian>>Debian_linux >> Version 3.0

                Debian>>Debian_linux >> Version 3.0

                  Debian>>Debian_linux >> Version 3.0

                    Debian>>Debian_linux >> Version 3.0

                      Debian>>Debian_linux >> Version 3.0

                        Debian>>Debian_linux >> Version 3.0

                          Mandrakesoft>>Mandrake_linux >> Version 9.2

                          Mandrakesoft>>Mandrake_linux >> Version 9.2

                            Mandrakesoft>>Mandrake_linux >> Version 10.0

                            Mandrakesoft>>Mandrake_linux >> Version 10.0

                              Mandrakesoft>>Mandrake_linux >> Version 10.1

                              Mandrakesoft>>Mandrake_linux >> Version 10.1

                                Mandrakesoft>>Mandrake_linux_corporate_server >> Version 2.1

                                Mandrakesoft>>Mandrake_linux_corporate_server >> Version 2.1

                                  Redhat>>Enterprise_linux >> Version 3.0

                                  Redhat>>Enterprise_linux >> Version 3.0

                                  Redhat>>Enterprise_linux >> Version 3.0

                                  Redhat>>Enterprise_linux_desktop >> Version 3.0

                                  References

                                  http://www.debian.org/security/2004/dsa-606
                                  Tags : vendor-advisory, x_refsource_DEBIAN
                                  http://www.redhat.com/support/errata/RHSA-2005-014.html
                                  Tags : vendor-advisory, x_refsource_REDHAT
                                  http://www.redhat.com/support/errata/RHSA-2004-583.html
                                  Tags : vendor-advisory, x_refsource_REDHAT
                                  http://www.securityfocus.com/bid/11785
                                  Tags : vdb-entry, x_refsource_BID
                                  http://www.securityfocus.com/archive/1/426072/30/6740/threaded
                                  Tags : vendor-advisory, x_refsource_FEDORA
                                  https://www.ubuntu.com/usn/usn-36-1/
                                  Tags : vendor-advisory, x_refsource_UBUNTU
                                  http://www.trustix.org/errata/2004/0065/
                                  Tags : vendor-advisory, x_refsource_TRUSTIX