CVE-2004-0416

CVS <1.12.8/<1.11.16 - Memory Corruption

Title source: llm
STIX 2.1

Exploitation Summary

EIP tracks 1 public exploit for CVE-2004-0416. PoCs published by Gyan Chawdhary.

AI-analyzed exploit summary This exploit targets a double-free vulnerability in CVS <= 1.11.15 by manipulating heap memory to achieve remote code execution. It leverages a specific heap layout to overwrite critical pointers and execute shellcode.

Description

Double free vulnerability for the error_prog_name string in CVS 1.12.x through 1.12.8, and 1.11.x through 1.11.16, may allow remote attackers to execute arbitrary code.

Exploits (1)

exploitdb WORKING POC VERIFIED
by Gyan Chawdhary · cremotelinux
https://www.exploit-db.com/exploits/392

This exploit targets a double-free vulnerability in CVS <= 1.11.15 by manipulating heap memory to achieve remote code execution. It leverages a specific heap layout to overwrite critical pointers and execute shellcode.

Classification
Working Poc 95%
Attack Type
Rce
Complexity
Complex
Reliability
Racy
Target: CVS <= 1.11.15
No auth needed
Prerequisites: Network access to CVS pserver (port 2401) · Specific glibc version (e.g., glibc 2.3.*)
devstral-2 · analyzed Feb 16, 2026 Full analysis →

References (11)

Core 11
Core References
Patch, Vendor Advisory vendor-advisory x_refsource_debian
http://www.debian.org/security/2004/dsa-519
Various Sources x_refsource_misc
http://security.e-matters.de/advisories/092004.html
Vendor Advisory vendor-advisory x_refsource_sgi
ftp://patches.sgi.com/support/free/security/advisories/20040605-01-U.asc
Mailing List mailing-list x_refsource_bugtraq
http://marc.info/?l=bugtraq&m=108716553923643&w=2
Third Party Advisory, VDB Entry vdb-entry signature x_refsource_oval
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10070
Vendor Advisory vendor-advisory x_refsource_redhat
http://www.redhat.com/support/errata/RHSA-2004-233.html
Vendor Advisory vendor-advisory x_refsource_mandrake
http://www.mandriva.com/security/advisories?name=MDKSA-2004:058
Third Party Advisory vendor-advisory x_refsource_gentoo
http://security.gentoo.org/glsa/glsa-200406-06.xml
Vendor Advisory vendor-advisory x_refsource_sgi
ftp://patches.sgi.com/support/free/security/advisories/20040604-01-U.asc
Third Party Advisory, VDB Entry vdb-entry signature x_refsource_oval
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A994
Mailing List mailing-list x_refsource_fulldisc
http://lists.grok.org.uk/pipermail/full-disclosure/2004-June/022441.html

Scores

EPSS 0.1321
EPSS Percentile 95.9%

Details

CWE
CWE-119
Status published
Products (29)
cvs/cvs 1.10.7
cvs/cvs 1.10.8
cvs/cvs 1.11
cvs/cvs 1.11.1
cvs/cvs 1.11.1_p1
cvs/cvs 1.11.2
cvs/cvs 1.11.3
cvs/cvs 1.11.4
cvs/cvs 1.11.5
cvs/cvs 1.11.6
... and 19 more
Published Aug 06, 2004
Tracked Since Feb 18, 2026