CVE-2004-1006

Currently unrated

Key Information:

Vendor: Isc
Status: Dhcpd
Vendor: CVE Published:; 1 March 2005

Summary

Format string vulnerability in the log functions in dhcpd for dhcp 2.x allows remote DNS servers to execute arbitrary code via certain DNS messages, a different vulnerability than CVE-2002-0702.

References

http://marc.info/?l=bugtraq&m=109968710822449&w=2

mailing-listx_refsource_BUGTRAQ

http://www.kb.cert.org/vuls/id/448384

third-party-advisoryx_refsource_CERT-VN

http://www.securityfocus.com/bid/11591

vdb-entryx_refsource_BID

Timeline

Vulnerability published
Mar 1, 2005
Vulnerability Reserved
Nov 2, 2004