Vulnerability in N/a

CVE-2004-0460

Buffer overflow in the logging capability for the DHCP daemon (DHCPD) for ISC DHCP 3.0.1rc12 and 3.0.1rc13 allows remote attackers to cause a denial of service (server crash) and possibly execute arbitrary code via multiple hostname option…

EPSS: 0.675 (98.6th percentile) — read the EPSS interpretation.

Affected products

N/a — versions n/a

References

VU#317350 (x_refsource_CERT-VN, third-party-advisory)
10590 (vdb-entry, x_refsource_BID)
MDKSA-2004:061 (vendor-advisory, x_refsource_MANDRAKE)
23265 (x_refsource_SECUNIA, third-party-advisory)
20040622 DHCP Vuln // no code 0day // (mailing-list, x_refsource_BUGTRAQ)
20040708 [OpenPKG-SA-2004.031] OpenPKG Security Advisory (dhcpd) (mailing-list, x_refsource_BUGTRAQ)
SuSE-SA:2004:019 (vendor-advisory, x_refsource_SUSE)
dhcp-ascii-log-bo(16475) (vdb-entry, x_refsource_XF)
www.xerox.com/downloads/usa/en/c/cert_XRX06_004_v11.pdf (x_refsource_CONFIRM)
TA04-174A (x_refsource_CERT, third-party-advisory)