Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2004-0461

Overview

Vulnerability Score 10.0 10.0
CVE Id CVE-2004-0461
Last Modified 10 Sep 2008 03:26:31
Published 06 Aug 2004 12:00:00
Confidentiality Impact COMPLETE COMPLETE
Integrity Impact COMPLETE COMPLETE
Availability Impact COMPLETE COMPLETE
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2004-0461

Summary

The DHCP daemon (DHCPD) for ISC DHCP 3.0.1rc12 and 3.0.1rc13, when compiled in environments that do not provide the vsnprintf function, uses C include files that define vsnprintf to use the less safe vsprintf function, which can lead to buffer overflow vulnerabilities that enable a denial of service (server crash) and possibly execute arbitrary code.

Vulnerable Systems

Operating System

  • Mandrakesoft Mandrake Linux 10.0

  • Mandrakesoft Mandrake Linux 9.0

  • Mandrakesoft Mandrake Linux 9.1

  • Mandrakesoft Mandrake Linux 9.2

  • Redhat Fedora Core Core 2.0

  • Suse Linux 7

  • Suse Linux 8

  • Suse Linux 8.0

  • Suse Linux 8.1

  • Suse Linux 8.2

  • Suse Linux 9.0

  • Suse Linux 9.1

Application

  • Isc Dhcpd 3.0.1

  • Suse Email Server Iii

  • Suse Linux Admin-cd For Firewall

  • Suse Linux Connectivity Server

  • Suse Linux Database Server

  • Suse Linux Firewall Cd

  • Suse Linux Office Server


References

CERT - TA04-174A

CERT-VN - VU#654390

BID - 10591

XF - dhcp-c-include-bo(16476)

SUSE - SuSE-SA:2004:019

BUGTRAQ - 20040628 ISC DHCP overflows

CONFIRM - http://www.xerox.com/downloads/usa/en/c/cert_XRX06_004_v11.pdf

MANDRAKE - MDKSA-2004:061

SECUNIA - 23265

BUGTRAQ - 20040708 [OpenPKG-SA-2004.031] OpenPKG Security Advisory (dhcpd)

BUGTRAQ - 20040622 DHCP Vuln // no code 0day //


Last Updated: 27 May 2016 10:38:36