Integer Overflow Vulnerability in IEEE 1394 (Firewire) Driver

Integer Overflow Vulnerability in IEEE 1394 (Firewire) Driver

CVE-2004-0658 · HIGH Severity

AV:L/AC:L/AU:N/C:C/I:C/A:C

Integer overflow in the hpsb_alloc_packet function (incorrectly reported as alloc_hpsb_packet) in IEEE 1394 (Firewire) driver 2.4 and 2.6 allows local users to cause a denial of service (crash) and possibly execute arbitrary code via the functions (1) raw1394_write, (2) state_connected, (3) handle_remote_request, or (4) hpsb_make_writebpacket.

Learn more about our User Device Pen Test.