cve/2005/CVE-2005-0124.md

### [CVE-2005-0124](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2005-0124)
![](https://img.shields.io/static/v1?label=Product&message=n%2Fa&color=blue)
![](https://img.shields.io/static/v1?label=Version&message=n%2Fa&color=blue)
![](https://img.shields.io/static/v1?label=Vulnerability&message=n%2Fa&color=brighgreen)

### Description

The coda_pioctl function in the coda functionality (pioctl.c) for Linux kernel 2.6.9 and 2.4.x before 2.4.29 may allow local users to cause a denial of service (crash) or execute arbitrary code via negative vi.in_size or vi.out_size values, which may trigger a buffer overflow.

### POC

#### Reference
- http://seclists.org/lists/linux-kernel/2004/Dec/3914.html
- http://seclists.org/lists/linux-kernel/2005/Jan/1089.html
- http://seclists.org/lists/linux-kernel/2005/Jan/2018.html
- http://seclists.org/lists/linux-kernel/2005/Jan/2020.html
- http://www.securityfocus.com/archive/1/428028/100/0/threaded

#### Github
No PoCs found on GitHub currently.