Lucene search
GoogleOSV:DSA-231HistoryJan 17, 2003 - 12:00 a.m.
dhcp3 - stack overflows
2003-01-1700:00:00
Google
osv.dev
6
0.135 Low
EPSS
Percentile
95.6%
The Internet Software Consortium discovered several vulnerabilities
during an audit of the ISC DHCP Daemon. The vulnerabilities exist in
error handling routines within the minires library and may be
exploitable as stack overflows. This could allow a remote attacker to
execute arbitrary code under the user id the dhcpd runs under, usually
root. Other DHCP servers than dhcp3 doesn’t seem to be affected.
For the stable distribution (woody) this problem has been
fixed in version 3.0+3.0.1rc9-2.1.
The old stable distribution (potato) does not contain dhcp3 packages.
For the unstable distribution (sid) this problem has been fixed in
version 3.0+3.0.1rc11-1.
We recommend that you upgrade your dhcp3-server package.
References
Related
nessus
nessus
Debian DSA-231-1 : dhcp3 - stack overflows
2004-09-29 00:00:00
Mandrake Linux Security Advisory : dhcp (MDKSA-2003:007)
2004-07-31 00:00:00
openvas
openvas
Debian Security Advisory DSA 231-1 (dhcp3)
2008-01-17 00:00:00
Debian Security Advisory DSA 231-1 (dhcp3)
2008-01-17 00:00:00
securityvulns
securityvulns
CERT Advisory CA-2003-01 Buffer Overflows in ISC DHCPD Minires Library
2003-01-16 00:00:00
cert
cert
ISC DHCPD minires library contains multiple buffer overflows
2003-01-15 00:00:00
debian
debian
[SECURITY] [DSA 231-1] New dhcp3 packages fix arbitrary code execution
2003-01-17 13:45:53
[SECURITY] [DSA 231-1] New dhcp3 packages fix arbitrary code execution
2003-01-17 13:45:53
nvd
nvd
CVE-2003-0026
2003-01-17 05:00:00
cve
cve
CVE-2003-0026
2003-01-17 05:00:00
suse
suse
remote system compromise in dhcp
2003-01-20 16:50:08
cvelist
cvelist
CVE-2003-0026
2003-01-16 05:00:00