Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2004-0460

Overview

Vulnerability Score 10.0 10.0
CVE Id CVE-2004-0460
Last Modified 10 Sep 2008 03:26:31
Published 06 Aug 2004 12:00:00
Confidentiality Impact COMPLETE COMPLETE
Integrity Impact COMPLETE COMPLETE
Availability Impact COMPLETE COMPLETE
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2004-0460

Summary

Buffer overflow in the logging capability for the DHCP daemon (DHCPD) for ISC DHCP 3.0.1rc12 and 3.0.1rc13 allows remote attackers to cause a denial of service (server crash) and possibly execute arbitrary code via multiple hostname options in (1) DISCOVER, (2) OFFER, (3) REQUEST, (4) ACK, or (5) NAK messages, which can generate a long string when writing to a log file.

Vulnerable Systems

Operating System

  • Mandrakesoft Mandrake Linux 10.0

  • Mandrakesoft Mandrake Linux 9.0

  • Mandrakesoft Mandrake Linux 9.1

  • Mandrakesoft Mandrake Linux 9.2

  • Redhat Fedora Core Core 2.0

  • Suse Linux 7

  • Suse Linux 8

  • Suse Linux 8.0

  • Suse Linux 8.1

  • Suse Linux 8.2

  • Suse Linux 9.0

  • Suse Linux 9.1

Application

  • Isc Dhcpd 3.0.1

  • Suse Email Server Iii

  • Suse Linux Admin-cd For Firewall

  • Suse Linux Connectivity Server

  • Suse Linux Database Server

  • Suse Linux Firewall Cd

  • Suse Linux Office Server


References

CERT - TA04-174A

CERT-VN - VU#317350

BID - 10590

XF - dhcp-ascii-log-bo(16475)

SUSE - SuSE-SA:2004:019

BUGTRAQ - 20040628 ISC DHCP overflows

CONFIRM - http://www.xerox.com/downloads/usa/en/c/cert_XRX06_004_v11.pdf

MANDRAKE - MDKSA-2004:061

SECUNIA - 23265

BUGTRAQ - 20040708 [OpenPKG-SA-2004.031] OpenPKG Security Advisory (dhcpd)

BUGTRAQ - 20040622 DHCP Vuln // no code 0day //


Last Updated: 27 May 2016 10:38:36