CVSS: 10.0EPSS: 2%CPEs: 28EXPL: 0CVE-2004-0461
https://notcve.org/view.php?id=CVE-2004-0461
The DHCP daemon (DHCPD) for ISC DHCP 3.0.1rc12 and 3.0.1rc13, when compiled in environments that do not provide the vsnprintf function, uses C include files that define vsnprintf to use the less safe vsprintf function, which can lead to buffer overflow vulnerabilities that enable a denial of service (server crash) and possibly execute arbitrary code. El demonio DHCP (DHCPD) de ISC DHCP 3.0.1rc12 y 3.0.1rc13, cuando se compila en entornos que no proveen la función vsnprintf, usa ficheros de inclusión de C que definen vsnprintf usando la función menos segura vsprintf, lo que puede ocasionar vulnerabilidades de desbordamiento de búfer que permitan una denegación de servicio (caída del servidor) y la ejecución de código arbitrario. • http://marc.info/?l=bugtraq&m=108795911203342&w=2 http://marc.info/?l=bugtraq&m=108843959502356&w=2 http://marc.info/?l=bugtraq&m=108938625206063&w=2 http://secunia.com/advisories/23265 http://www.kb.cert.org/vuls/id/654390 http://www.mandriva.com/security/advisories?name=MDKSA-2004:061 http://www.novell.com/linux/security/advisories/2004_19_dhcp_server.html http://www.securityfocus.com/bid/10591 http://www.us-cert.gov/cas/techalerts/TA04-174A.html http:/ •
CVSS: 10.0EPSS: 92%CPEs: 28EXPL: 0CVE-2004-0460
https://notcve.org/view.php?id=CVE-2004-0460
Buffer overflow in the logging capability for the DHCP daemon (DHCPD) for ISC DHCP 3.0.1rc12 and 3.0.1rc13 allows remote attackers to cause a denial of service (server crash) and possibly execute arbitrary code via multiple hostname options in (1) DISCOVER, (2) OFFER, (3) REQUEST, (4) ACK, or (5) NAK messages, which can generate a long string when writing to a log file. Desbordamiento de búfer en la capacidad de registro de sucesos (logging) del demonio DHCP (DHCPD) de ISC DHCP 3.0.1rc12 y 3.01rc13 permite a atacantes remotos causar una denegación de servión (caída del servidor) y posiblemente ejecutar código arbitrario mediante multiples opciones de nombre de máquina (hostname) en mensajes (1) DISCOVER, (2) OFFER, (3) REQUEST, (4) ACK, o (5) NAK, lo que puede generar una cadena larga cuando se escribe en un fichero de registro. • http://marc.info/?l=bugtraq&m=108795911203342&w=2 http://marc.info/?l=bugtraq&m=108843959502356&w=2 http://marc.info/?l=bugtraq&m=108938625206063&w=2 http://secunia.com/advisories/23265 http://www.kb.cert.org/vuls/id/317350 http://www.mandriva.com/security/advisories?name=MDKSA-2004:061 http://www.novell.com/linux/security/advisories/2004_19_dhcp_server.html http://www.securityfocus.com/bid/10590 http://www.us-cert.gov/cas/techalerts/TA04-174A.html http:/ •
CVSS: 7.5EPSS: 94%CPEs: 1EXPL: 0CVE-2004-0045
https://notcve.org/view.php?id=CVE-2004-0045
Buffer overflow in the ARTpost function in art.c in the control message handling code for INN 2.4.0 may allow remote attackers to execute arbitrary code. Desbordamiento de búfer en el código de control del mensaje en INN 2.4.0 puede permitir que atacantes remotos ejecuten código arbitrario. • http://archives.neohapsis.com/archives/bugtraq/2004-01/0063.html http://archives.neohapsis.com/archives/bugtraq/2004-01/0064.html http://secunia.com/advisories/10578 http://www.kb.cert.org/vuls/id/759020 http://www.securityfocus.com/bid/9382 http://www.slackware.org/security/viewer.php?l=slackware-security&y=2004&m=slackware-security.365791 https://exchange.xforce.ibmcloud.com/vulnerabilities/14190 •
CVSS: 4.3EPSS: 2%CPEs: 58EXPL: 0CVE-2003-0914
https://notcve.org/view.php?id=CVE-2003-0914
ISC BIND 8.3.x before 8.3.7, and 8.4.x before 8.4.3, allows remote attackers to poison the cache via a malicious name server that returns negative responses with a large TTL (time-to-live) value. ISC BIND 8.3.x antes de 8.3.7, y 8.4.x antes de 8.4.3 permite a atacantes remotos envenenar la cache mediante un servidor de nombres malicioso que devuelve respuestas negativas con un valor TTL (time to live) largo. • ftp://ftp.sco.com/pub/updates/OpenLinux/3.1.1/Server/CSSA-2004-003.0/CSSA-2004-003.0.txt ftp://ftp.sco.com/pub/updates/UnixWare/CSSA-2003-SCO.33/CSSA-2003-SCO.33.txt http://secunia.com/advisories/10542 http://sunsolve.sun.com/pub-cgi/retrieve.pl?doc=fsalert/57434 http://www.debian.org/security/2004/dsa-409 http://www.kb.cert.org/vuls/id/734644 http://www.trustix.org/errata/misc/2003/TSL-2003-0044-bind.asc.txt https://oval.cisecurity.org/repository& •
CVSS: 5.0EPSS: 4%CPEs: 10EXPL: 0CVE-2003-0039
https://notcve.org/view.php?id=CVE-2003-0039
ISC dhcrelay (dhcp-relay) 3.0rc9 and earlier, and possibly other versions, allows remote attackers to cause a denial of service (packet storm) via a certain BOOTP packet that is forwarded to a broadcast MAC address, causing an infinite loop that is not restricted by a hop count. ISC dhcprelay (dhcp-relay) y anteriores, y posiblemente otras versiones, permite a atacantes remotos causar una denegación de servicio (tormenta de paquetes) mediante cierto paquete BOOTP que es enviado a una dirección MAC de difusión (broadcast) • http://cc.turbolinux.com/security/TLSA-2003-26.txt http://distro.conectiva.com.br/atualizacoes/?id=a&anuncio=000616 http://marc.info/?l=bugtraq&m=104310927813830&w=2 http://www.debian.org/security/2003/dsa-245 http://www.kb.cert.org/vuls/id/149953 http://www.openpkg.org/security/OpenPKG-SA-2003.012-dhcpd.html http://www.redhat.com/support/errata/RHSA-2003-034.html http://www.securityfocus.com/bid/6628 https://exchange.xforce.ibmcloud.com/vulnerabilities/11187 •