CVE-2004-1074

Linux kernel - Denial of Service via Malformed a.out Binary

Title source: llm
STIX 2.1

Exploitation Summary

EIP tracks 1 public exploit for CVE-2004-1074. PoCs published by Florian Heinz.

AI-analyzed exploit summary This exploit generates a malformed 'a.out' file that triggers a local denial-of-service (DoS) condition in the Linux kernel, causing a kernel oops and consuming system resources. It also mentions a memory-disclosure vulnerability affecting SMP systems with over 4GB of memory.

Description

The binfmt functionality in the Linux kernel, when "memory overcommit" is enabled, allows local users to cause a denial of service (kernel oops) via a malformed a.out binary.

Exploits (1)

exploitdb WORKING POC VERIFIED
by Florian Heinz · textdoslinux
https://www.exploit-db.com/exploits/24777

This exploit generates a malformed 'a.out' file that triggers a local denial-of-service (DoS) condition in the Linux kernel, causing a kernel oops and consuming system resources. It also mentions a memory-disclosure vulnerability affecting SMP systems with over 4GB of memory.

Classification
Working Poc 90%
Attack Type
Dos
Complexity
Trivial
Reliability
Reliable
Target: Linux kernel (versions affected by CVE-2004-1074)
No auth needed
Prerequisites: Local access to the target system
devstral-2 · analyzed Feb 16, 2026 Full analysis →

References (17)

Core 17
Core References
Mailing List mailing-list x_refsource_bugtraq
http://marc.info/?l=bugtraq&m=110322596918807&w=2
Third Party Advisory third-party-advisory x_refsource_secunia
http://secunia.com/advisories/20163
Third Party Advisory vendor-advisory x_refsource_debian
http://www.debian.org/security/2006/dsa-1082
Vendor Advisory vendor-advisory x_refsource_mandrake
http://www.mandriva.com/security/advisories?name=MDKSA-2005:022
Third Party Advisory, VDB Entry vdb-entry x_refsource_xf
https://exchange.xforce.ibmcloud.com/vulnerabilities/18290
Mailing List mailing-list x_refsource_mlist
http://marc.info/?l=linux-kernel&m=110021173607372&w=2
Issue Tracking vendor-advisory x_refsource_fedora
https://bugzilla.fedora.us/show_bug.cgi?id=2336
Third Party Advisory vendor-advisory x_refsource_debian
http://www.debian.org/security/2006/dsa-1070
Third Party Advisory third-party-advisory x_refsource_secunia
http://secunia.com/advisories/20162
Vendor Advisory vendor-advisory x_refsource_trustix
http://www.trustix.org/errata/2005/0001/
Exploit, Patch, Vendor Advisory vdb-entry x_refsource_bid
http://www.securityfocus.com/bid/11754
Third Party Advisory vendor-advisory x_refsource_debian
http://www.debian.org/security/2006/dsa-1067
Third Party Advisory vendor-advisory x_refsource_debian
http://www.debian.org/security/2006/dsa-1069
Third Party Advisory, VDB Entry vdb-entry signature x_refsource_oval
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A9751
Vendor Advisory vendor-advisory x_refsource_conectiva
http://distro.conectiva.com.br/atualizacoes/index.php?id=a&anuncio=000930
Third Party Advisory third-party-advisory x_refsource_secunia
http://secunia.com/advisories/20202
Third Party Advisory third-party-advisory x_refsource_secunia
http://secunia.com/advisories/20338

Scores

EPSS 0.0101
EPSS Percentile 58.6%

Details

Status published
Published Jan 10, 2005
Tracked Since Feb 18, 2026