CVE-2004-1137

EPSS 15.82% · P95 Updated Feb 27, 2026

Public Exploits 1

Get alerts for future matching vulnerabilitiesLog in to subscribe

I. Basic Information for CVE-2004-1137

Vulnerability Information

Have questions about the vulnerability? See if Shenlong's analysis helps!

Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.

Vulnerability Title

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Description

Multiple vulnerabilities in the IGMP functionality for Linux kernel 2.4.22 to 2.4.28, and 2.6.x to 2.6.9, allow local and remote attackers to cause a denial of service or execute arbitrary code via (1) the ip_mc_source function, which decrements a counter to -1, or (2) the igmp_marksources function, which does not properly validate IGMP message parameters and performs an out-of-bounds read.

Source: NVD (National Vulnerability Database)

CVSS Information

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Type

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Title

Linux Kernel IGMP 拒绝服务/代码执行漏洞

Source: CNNVD (China National Vulnerability Database)

Vulnerability Description

Linux Kernel是开放源代码操作系统Linux的内核。 Linux kernel 2.4.22至2.4.28及2.6.x至2.6.9版本中的IGMP功能模块存在多个漏洞。攻击者可通过以下方式导致拒绝服务或执行任意代码：(1)通过ip_mc_source函数可导致系统计数器耗尽；(2)igmp_sources函数没有正确检验IGMP消息参数，可出现内存越界读取。

Source: CNNVD (China National Vulnerability Database)

CVSS Information

N/A

Source: CNNVD (China National Vulnerability Database)

Vulnerability Type

N/A

Source: CNNVD (China National Vulnerability Database)

Affected Products

Vendor	Product	Affected Versions	CPE	Subscribe
-	n/a	n/a	-

II. Public POCs for CVE-2004-1137

#	POC Description	Source Link	Shenlong Link

AI-Generated POCPremium

No public POC found.

III. Intelligence Information for CVE-2004-1137

请登录查看更多情报信息。

Same Patch Batch · n/a · 2004-12-15 · 61 CVEs total

CVE-2004-1214		russobit-m kreed nickname/message 缓冲区溢出漏洞
CVE-2004-1232		Gadu-Gadu ImagesFilename 堆栈溢出漏洞
CVE-2004-1229		Gadu-Gadu parse 跨站脚本攻击漏洞
CVE-2004-1228		SugarCRM SugarSales 信息泄露漏洞
CVE-2004-1227		SugarCRM SugarSales 多处目录遍历漏洞
CVE-2004-1230		Gadu-Gadu 信息泄露漏洞
CVE-2004-1218		ibexsoftware RemoteExecute 远程拒绝服务漏洞
CVE-2004-1217		HostingController 多个信息泄露漏洞
CVE-2004-1216		russobit-m kreed nickname/modeltype 拒绝服务漏洞
CVE-2004-1215		russobit-m kreed UDP 拒绝服务漏洞
CVE-2004-1219		PHPArena paFileDB session 信息泄露漏洞
CVE-2004-1213		AdvancedGuestbook index.php 跨站脚本攻击漏洞
CVE-2004-1212		BlogTorrent btdownload.php 目录遍历漏洞
CVE-2004-1211		PegasusMail Mercury/32 IMAP 缓冲区溢出漏洞
CVE-2004-1210		IPCop proxylog.dat 跨站脚本攻击漏洞
CVE-2004-1209		Verisign PayflowLink 数据篡改漏洞
CVE-2004-1208		21-6.com Orbz 缓冲区溢出漏洞
CVE-2004-1207		Serious 多个软件拒绝服务漏洞
CVE-2004-1206		canvas.anubix.net PnTresMailer codebrowserpntm.php 目录遍历漏洞
CVE-2004-1205		canvas.anubix.net PnTresMailer codebrowserpntm.php 信息泄露漏洞

Showing top 20 of 61 CVEs. View all on vendor page → →

IV. Related Vulnerabilities

Same product: n/a

Same vendor: n/a

V. Comments for CVE-2004-1137

No comments yet

Goal Reached Thanks to every supporter — we hit 100%!

CVE-2004-1137

Public Exploits 1

I. Basic Information for CVE-2004-1137

Vulnerability Information

Vulnerability Title

Vulnerability Description

CVSS Information

Vulnerability Type

Vulnerability Title

Vulnerability Description

CVSS Information

Vulnerability Type

Affected Products

II. Public POCs for CVE-2004-1137

III. Intelligence Information for CVE-2004-1137

Vendor Advisories for CVE-2004-1137 (4)

Mailing List Discussions for CVE-2004-1137 (1)

Other References for CVE-2004-1137 (5)

Same Patch Batch · n/a · 2004-12-15 · 61 CVEs total

IV. Related Vulnerabilities

V. Comments for CVE-2004-1137

Leave a comment