Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
nvd[email protected]NVD:CVE-2004-1006
HistoryMar 01, 2005 - 5:00 a.m.

CVE-2004-1006

2005-03-0105:00:00
[email protected]
web.nvd.nist.gov
5

CVSS2

10

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

AI Score

7.3

Confidence

Low

EPSS

0.165

Percentile

96.0%

JSON

Format string vulnerability in the log functions in dhcpd for dhcp 2.x allows remote DNS servers to execute arbitrary code via certain DNS messages, a different vulnerability than CVE-2002-0702.

Affected configurations

Nvd
Node
iscdhcpdMatch2.0.pl5
OR
iscdhcpdMatch3.0
OR
iscdhcpdMatch3.0rc12
OR
iscdhcpdMatch3.0rc4
OR
iscdhcpdMatch3.0.1rc1
OR
iscdhcpdMatch3.0.1rc10
OR
iscdhcpdMatch3.0.1rc11
OR
iscdhcpdMatch3.0.1rc12
OR
iscdhcpdMatch3.0.1rc13
OR
iscdhcpdMatch3.0.1rc14
OR
iscdhcpdMatch3.0.1rc2
OR
iscdhcpdMatch3.0.1rc3
OR
iscdhcpdMatch3.0.1rc4
OR
iscdhcpdMatch3.0.1rc5
OR
iscdhcpdMatch3.0.1rc6
OR
iscdhcpdMatch3.0.1rc7
OR
iscdhcpdMatch3.0.1rc8
OR
iscdhcpdMatch3.0.1rc9
OR
iscdhcpdMatch3.0_b2pl9
OR
iscdhcpdMatch3.0_b2pl23
OR
iscdhcpdMatch3.0_pl1
OR
iscdhcpdMatch3.0_pl2
VendorProductVersionCPE
iscdhcpd2.0.pl5cpe:2.3:a:isc:dhcpd:2.0.pl5:*:*:*:*:*:*:*
iscdhcpd3.0cpe:2.3:a:isc:dhcpd:3.0:*:*:*:*:*:*:*
iscdhcpd3.0cpe:2.3:a:isc:dhcpd:3.0:rc12:*:*:*:*:*:*
iscdhcpd3.0cpe:2.3:a:isc:dhcpd:3.0:rc4:*:*:*:*:*:*
iscdhcpd3.0.1cpe:2.3:a:isc:dhcpd:3.0.1:rc1:*:*:*:*:*:*
iscdhcpd3.0.1cpe:2.3:a:isc:dhcpd:3.0.1:rc10:*:*:*:*:*:*
iscdhcpd3.0.1cpe:2.3:a:isc:dhcpd:3.0.1:rc11:*:*:*:*:*:*
iscdhcpd3.0.1cpe:2.3:a:isc:dhcpd:3.0.1:rc12:*:*:*:*:*:*
iscdhcpd3.0.1cpe:2.3:a:isc:dhcpd:3.0.1:rc13:*:*:*:*:*:*
iscdhcpd3.0.1cpe:2.3:a:isc:dhcpd:3.0.1:rc14:*:*:*:*:*:*
Rows per page:
1-10 of 221

Related

cvelist 2
openvas 4
ubuntucve 1
cve 2
osv 1
nessus 4
debian 2
freebsd 1
cert 2
suse 1
nvd 1
exploitdb 1
redhat 1
securityvulns 1
centos 1
cvelist
cvelist
CVE-2004-1006
2004-11-19 05:00:00
CVE-2002-0702
2002-07-23 04:00:00
openvas
openvas
isc-dhcpd -- format string vulnerabilities
2008-09-04 00:00:00
isc-dhcpd -- format string vulnerabilities
2008-09-04 00:00:00
Debian: Security Advisory (DSA-584-1)
2008-01-17 00:00:00
ubuntucve
ubuntucve
CVE-2004-1006
2005-03-01 00:00:00
cve
cve
CVE-2004-1006
2005-03-01 05:00:00
CVE-2002-0702
2002-07-26 04:00:00
osv
osv
dhcp - format string vulnerability
2004-11-04 00:00:00
nessus
nessus
FreeBSD : isc-dhcpd -- format string vulnerabilities (ccd325d2-fa08-11d9-bc08-0001020eed82)
2005-08-01 00:00:00
Debian DSA-584-1 : dhcp - format string vulnerability
2004-11-10 00:00:00
Mandrake Linux Security Advisory : dhcp (MDKSA-2002:037)
2004-07-31 00:00:00
debian
debian
[SECURITY] [DSA 584-1] New dhcp packages fix format string vulnerability
2004-11-04 17:28:41
[SECURITY] [DSA 584-1] New dhcp packages fix format string vulnerability
2004-11-04 17:28:41
freebsd
freebsd
isc-dhcpd -- format string vulnerabilities
2004-11-08 00:00:00
cert
cert
ISC DHCP contains a format string vulnerabilty in errwarn.c
2005-03-09 00:00:00
ISC DHCPD contains format string vulnerability when logging DNS-update requests
2002-05-08 00:00:00
suse
suse
remote command execution in dhcp/dhcp-server
2002-05-22 16:58:41
nvd
nvd
CVE-2002-0702
2002-07-26 04:00:00
exploitdb
exploitdb
ISC DHCPD 2.0/3.0.1 - NSUPDATE Remote Format String
2002-05-08 00:00:00
redhat
redhat
(RHSA-2005:212) dhcp security update
2005-04-12 00:00:00
securityvulns
securityvulns
Re: debian dhcpd, old format string bug
2004-11-06 00:00:00
centos
centos
dhcp security update
2005-04-12 23:06:20

CVSS2

10

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

AI Score

7.3

Confidence

Low

EPSS

0.165

Percentile

96.0%

JSON
Related for NVD:CVE-2004-1006
cvelist2openvas4ubuntucve1cve2osv1nessus4debian2freebsd1cert2suse1nvd1exploitdb1redhat1securityvulns1centos1