CyberSec.Space Logo
返回 CVE 瀏覽器

CVE-2004-1006

CRITICAL
10.0
CVSS Severity Score
EPSS Score0.1070%
EPSS Percentile34.55th
Published2005年3月1日
Last Modified2026年4月16日

Vulnerability Description

Format string vulnerability in the log functions in dhcpd for dhcp 2.x allows remote DNS servers to execute arbitrary code via certain DNS messages, a different vulnerability than CVE-2002-0702.

Affected Platforms (CPE)

📦
Isc

Dhcpd

= 2.0.pl5
📦
Isc

Dhcpd

= 3.0
📦
Isc

Dhcpd

= 3.0
📦
Isc

Dhcpd

= 3.0
📦
Isc

Dhcpd

= 3.0.1
📦
Isc

Dhcpd

= 3.0.1
📦
Isc

Dhcpd

= 3.0.1
📦
Isc

Dhcpd

= 3.0.1
📦
Isc

Dhcpd

= 3.0.1
📦
Isc

Dhcpd

= 3.0.1
📦
Isc

Dhcpd

= 3.0.1
📦
Isc

Dhcpd

= 3.0.1
📦
Isc

Dhcpd

= 3.0.1
📦
Isc

Dhcpd

= 3.0.1
📦
Isc

Dhcpd

= 3.0.1
📦
Isc

Dhcpd

= 3.0.1
📦
Isc

Dhcpd

= 3.0.1
📦
Isc

Dhcpd

= 3.0.1
📦
Isc

Dhcpd

= 3.0_b2pl9
📦
Isc

Dhcpd

= 3.0_b2pl23
📦
Isc

Dhcpd

= 3.0_pl1
📦
Isc

Dhcpd

= 3.0_pl2

References & Advisories

🔗 http://archives.neohapsis.com/archives/bugtraq/2004-10/0287.html
🔗 http://archives.neohapsis.com/archives/bugtraq/2004-11/0037.html
🔗 http://marc.info/?l=bugtraq&m=109968710822449&w=2
🔗 http://www.debian.org/security/2004/dsa-584
🔗 http://www.kb.cert.org/vuls/id/448384
🔗 http://www.redhat.com/support/errata/RHSA-2005-212.html
🔗 http://www.securityfocus.com/bid/11591
🔗 https://exchange.xforce.ibmcloud.com/vulnerabilities/17963

相關漏洞威脅

CVE-2004-046010.0

Buffer overflow in the logging capability for the DHCP daemon (DHCPD) for ISC DHCP 3.0.1rc12 and 3.0.1rc13 allows remote attackers...

CVE-2004-046110.0

The DHCP daemon (DHCPD) for ISC DHCP 3.0.1rc12 and 3.0.1rc13, when compiled in environments that do not provide the vsnprintf func...

CVE-2002-070210.0

Format string vulnerabilities in the logging routines for dynamic DNS code (print.c) of ISC DHCP daemon (DHCPD) 3 to 3.0.1rc8, wit...

CVE-2007-006210.0

Integer overflow in the ISC dhcpd 3.0.x before 3.0.7 and 3.1.x before 3.1.1; and the DHCP server in EMC VMware Workstation before ...