Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
osvGoogleOSV:DSA-584-1
HistoryNov 04, 2004 - 12:00 a.m.

dhcp - format string vulnerability

2004-11-0400:00:00
Google
osv.dev
7

10 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

JSON

“infamous41md” noticed that the log functions in dhcp 2.x, which is
still distributed in the stable Debian release, contained pass
parameters to function that use format strings. One use seems to be
exploitable in connection with a malicious DNS server.

For the stable distribution (woody) these problems have been fixed in
version 2.0pl5-11woody1.

For the unstable distribution (sid) these problems have been fixed in
version 2.0pl5-19.1.

We recommend that you upgrade your dhcp package.

Related

nessus 3
openvas 4
cert 1
debian 2
freebsd 1
ubuntucve 1
redhat 1
cve 1
centos 1
nessus
nessus
FreeBSD : isc-dhcpd -- format string vulnerabilities (ccd325d2-fa08-11d9-bc08-0001020eed82)
2005-08-01 00:00:00
Debian DSA-584-1 : dhcp - format string vulnerability
2004-11-10 00:00:00
RHEL 2.1 : dhcp (RHSA-2005:212)
2005-04-12 00:00:00
openvas
openvas
Debian Security Advisory DSA 584-1 (dhcp)
2008-01-17 00:00:00
Debian: Security Advisory (DSA-584-1)
2008-01-17 00:00:00
isc-dhcpd -- format string vulnerabilities
2008-09-04 00:00:00
cert
cert
ISC DHCP contains a format string vulnerabilty in errwarn.c
2005-03-09 00:00:00
debian
debian
[SECURITY] [DSA 584-1] New dhcp packages fix format string vulnerability
2004-11-04 17:28:41
[SECURITY] [DSA 584-1] New dhcp packages fix format string vulnerability
2004-11-04 17:28:41
freebsd
freebsd
isc-dhcpd -- format string vulnerabilities
2004-11-08 00:00:00
ubuntucve
ubuntucve
CVE-2004-1006
2005-03-01 00:00:00
redhat
redhat
(RHSA-2005:212) dhcp security update
2005-04-12 00:00:00
cve
cve
CVE-2004-1006
2005-03-01 05:00:00
centos
centos
dhcp security update
2005-04-12 23:06:20

10 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

JSON
Related for OSV:DSA-584-1
nessus3openvas4cert1debian2freebsd1ubuntucve1redhat1cve1centos1