CVE-2004-1916

EPSS 9.9%

Published: 4/8/2004Modified: 4/28/2026

Description

Multiple buffer overflows in LCDProc 0.4.1, and possibly other 0.4.x versions up to 0.4.4, allows remote attackers to execute arbitrary code via (1) a long invalid command to parse_all_client_messages function, or (2) long argv command to test_func_func function.

Affected packages (1)

Debian/lcdprocfrom 0, < 0.4.5

References (1)

ADVISORYhttps://security-tracker.debian.org/tracker/CVE-2004-1916