Lucene search
SuseSUSE-SA:2004:019HistoryJun 23, 2004 - 7:29 a.m.
remote system compromise in dhcp/dhcp-server
2004-06-2307:29:17
lists.opensuse.org
23
0.935 High
EPSS
Percentile
98.9%
The Dynamic Host Configuration Protocol (DHCP) server is used to configure clients that dynamically connect to a network (WLAN hotspots, customer networks, …). The CERT informed us about a buffer overflow in the logging code of the server that can be triggered by a malicious client by supplying multiple hostnames. The hostname strings are concatenated and copied in a fixed size buffer without checking the buffer bounds. Other possible buffer overflow conditions exist in using vsprintf() instead of vsnprintf(). This behavior can be configured during compile- time. The dhcp/dhcp-server package coming with SUSE LINUX used the vulnerable vsprintf() function.
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| openSUSE | 9.1 | x86_64 | dhcp-server | < 3.0.1rc13-28.15 | dhcp-server-3.0.1rc13-28.15.x86_64.rpm |
| openSUSE | 9.0 | i586 | dhcp-server | < 3.0.1rc12-71 | dhcp-server-3.0.1rc12-71.i586.rpm |
| openSUSE | 9.0 | x86_64 | dhcp-server | < 3.0.1rc12-71 | dhcp-server-3.0.1rc12-71.x86_64.rpm |
| openSUSE | 8.2 | i586 | dhcp-server | < 3.0.1rc10-61 | dhcp-server-3.0.1rc10-61.i586.rpm |
| openSUSE | 8.1 | i586 | dhcp-server | < 3.0.1rc9-144 | dhcp-server-3.0.1rc9-144.i586.rpm |
| openSUSE | 8.0 | i386 | dhcp-server | < 3.0.1rc6-22 | dhcp-server-3.0.1rc6-22.i386.rpm |
| openSUSE | 9.1 | i586 | dhcp-server | < 3.0.1rc13-28.15 | dhcp-server-3.0.1rc13-28.15.i586.rpm |
Related
nessus
nessus
Mandrake Linux Security Advisory : OpenOffice.org (MDKSA-2004:078)
2004-07-31 00:00:00
Mandrake Linux Security Advisory : dhcp (MDKSA-2004:061)
2004-07-31 00:00:00
GLSA-200405-15 : cadaver heap-based buffer overflow
2004-08-30 00:00:00
securityvulns
securityvulns
US-CERT Technical Cyber Security Alert TA04-174A -- Multiple Vulnerabilities in ISC DHCP 3
2004-06-23 00:00:00
SUSE Security Announcement: kernel (SuSE-SA:2004:017)
2004-06-18 00:00:00
Advisory 06/2004: libneon date parsing vulnerability
2004-05-19 00:00:00
suse
suse
local denial-of-service attack in kernel
2004-06-16 14:13:55
remote system compromise in subversion
2004-06-17 09:42:39
remote system compromise in squid
2004-06-09 14:47:16
ubuntucve
ubuntucve
CVE-2004-0398
2004-07-07 00:00:00
CVE-2004-0179
2004-06-01 00:00:00
debiancve
debiancve
CVE-2004-0398
2004-07-07 04:00:00
openvas
openvas
FreeBSD Ports: neon
2008-09-04 00:00:00
Gentoo Security Advisory GLSA 200405-15 (cadaver)
2008-09-24 00:00:00
Debian Security Advisory DSA 506-1 (neon)
2008-01-17 00:00:00
cve
cve
gentoo
gentoo
neon heap-based buffer overflow
2004-05-20 00:00:00
cadaver heap-based buffer overflow
2004-05-20 00:00:00
Multiple format string vulnerabilities in neon 0.24.4 and earlier
2004-05-09 00:00:00
freebsd
freebsd
neon date parsing vulnerability
2004-05-19 00:00:00
isc-dhcp3-server buffer overflow in logging mechanism
2004-06-22 00:00:00
neon format string vulnerabilities
2004-04-14 00:00:00
debian
debian
[SECURITY] [DSA 506-1] New neon packages fix buffer overflow
2004-05-19 09:21:53
[SECURITY] [DSA 507-1] New cadaver packages fix buffer overflow
2004-05-19 11:36:47
[SECURITY] [DSA 487-1] New neon packages fix format string vulnerabilities
2004-04-17 01:44:24
osv
osv
neon - buffer overflow
2004-05-19 00:00:00
neon - format string
2004-04-16 00:00:00
redhat
redhat
(RHSA-2004:191) cadaver security update
2004-05-19 00:00:00
(RHSA-2004:157) cadaver security update
2004-04-14 00:00:00
(RHSA-2004:160) openoffice.org security update
2004-04-14 00:00:00
cert
cert
checkpoint_advisories
checkpoint_advisories