CVE Vulnerabilities

CVE-2004-0460

Published: Aug 06, 2004 | Modified: Jul 11, 2017
CVSS 3.x
N/A
Source:
NVD
CVSS 2.x
10 HIGH
AV:N/AC:L/Au:N/C:C/I:C/A:C
RedHat/V2
RedHat/V3
Ubuntu

Buffer overflow in the logging capability for the DHCP daemon (DHCPD) for ISC DHCP 3.0.1rc12 and 3.0.1rc13 allows remote attackers to cause a denial of service (server crash) and possibly execute arbitrary code via multiple hostname options in (1) DISCOVER, (2) OFFER, (3) REQUEST, (4) ACK, or (5) NAK messages, which can generate a long string when writing to a log file.

Affected Software

Name Vendor Start Version End Version
Dns_one_appliance Infoblox 2.3.1_r5 (including) 2.3.1_r5 (including)
Dns_one_appliance Infoblox 2.4.0.8 (including) 2.4.0.8 (including)
Dns_one_appliance Infoblox 2.4.0.8a (including) 2.4.0.8a (including)

References