Lucene search
SuseSUSE-SA:2003:0006HistoryJan 20, 2003 - 4:50 p.m.
remote system compromise in dhcp
2003-01-2016:50:08
lists.opensuse.org
14
0.135 Low
EPSS
Percentile
95.6%
The ISC (Internet Software Consortium) dhcp package is an imple- mentation of the “Dynamic Host Configuration Protocol” (DHCP). An internal source code audit done by ISC revealed several buffer overflows in the code which is responsible to handle dynamic DNS requests. These bugs allow an attacker to gain remote access to the dhcp server if the dynamic DNS feature is enabled. Dynamic DNS is not enabled by default on SuSE Linux.
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| openSUSE | 8.0 | i386 | dhcp-base | < 3.0.1rc6-15 | dhcp-base-3.0.1rc6-15.i386.rpm |
| openSUSE | 8.1 | i586 | dhcp-server | < 3.0.1rc9-59 | dhcp-server-3.0.1rc9-59.i586.rpm |
| openSUSE | 7.3 | i386 | dhcrelay | < 3.0rc12-56 | dhcrelay-3.0rc12-56.i386.rpm |
| openSUSE | 7.2 | i386 | dhcp-devel | < 3.0rc4-32 | dhcp-devel-3.0rc4-32.i386.rpm |
| openSUSE | 7.3 | ppc | dhcp-devel | < 3.0rc12-39 | dhcp-devel-3.0rc12-39.ppc.rpm |
| openSUSE | 7.3 | sparc | dhcp-devel | < 3.0rc12-26 | dhcp-devel-3.0rc12-26.sparc.rpm |
| openSUSE | 7.0 | alpha | dhcpcd | < 1.3.18p8-11 | dhcpcd-1.3.18p8-11.alpha.rpm |
| openSUSE | 7.1 | ppc | dhcpcd | < 1.3.19pl2-1 | dhcpcd-1.3.19pl2-1.ppc.rpm |
| openSUSE | 7.1 | alpha | dhcpcd | < 1.3.19pl6-0 | dhcpcd-1.3.19pl6-0.alpha.rpm |
| openSUSE | 7.1 | i386 | dhcpcd | < 1.3.19pl2-1 | dhcpcd-1.3.19pl2-1.i386.rpm |
Related
nessus
nessus
Debian DSA-231-1 : dhcp3 - stack overflows
2004-09-29 00:00:00
Mandrake Linux Security Advisory : dhcp (MDKSA-2003:007)
2004-07-31 00:00:00
openvas
openvas
Debian Security Advisory DSA 231-1 (dhcp3)
2008-01-17 00:00:00
Debian Security Advisory DSA 231-1 (dhcp3)
2008-01-17 00:00:00
securityvulns
securityvulns
CERT Advisory CA-2003-01 Buffer Overflows in ISC DHCPD Minires Library
2003-01-16 00:00:00
cert
cert
ISC DHCPD minires library contains multiple buffer overflows
2003-01-15 00:00:00
cve
cve
CVE-2003-0026
2003-01-17 05:00:00
osv
osv
dhcp3 - stack overflows
2003-01-17 00:00:00
cvelist
cvelist
CVE-2003-0026
2003-01-16 05:00:00
debian
debian
[SECURITY] [DSA 231-1] New dhcp3 packages fix arbitrary code execution
2003-01-17 13:45:53
[SECURITY] [DSA 231-1] New dhcp3 packages fix arbitrary code execution
2003-01-17 13:45:53
nvd
nvd
CVE-2003-0026
2003-01-17 05:00:00