Vulnerability   
Search   
    Search 219043 CVE descriptions
and 99761 test descriptions,
access 10,000+ cross references.
Tests   CVE   All  

CVE ID:CVE-2002-0702
Description:Format string vulnerabilities in the logging routines for dynamic DNS code (print.c) of ISC DHCP daemon (DHCPD) 3 to 3.0.1rc8, with the NSUPDATE option enabled, allow remote malicious DNS servers to execute arbitrary code via format strings in a DNS server response.
Test IDs: None available
Cross References: Common Vulnerability Exposure (CVE) ID: CVE-2002-0702
BugTraq ID: 4701
http://www.securityfocus.com/bid/4701
Bugtraq: 20020508 [NGSEC-2002-2] ISC DHCPDv3, remote root compromise (Google Search)
http://marc.info/?l=bugtraq&m=102089498828206&w=2
Caldera Security Advisory: CSSA-2002-028.0
ftp://ftp.caldera.com/pub/security/OpenLinux/CSSA-2002-028.0.txt
Cert/CC Advisory: CA-2002-12
http://www.cert.org/advisories/CA-2002-12.html
CERT/CC vulnerability note: VU#854315
http://www.kb.cert.org/vuls/id/854315
Conectiva Linux advisory: CLA-2002:483
http://distro.conectiva.com.br/atualizacoes/?id=a&anuncio=000483
http://www.linux-mandrake.com/en/security/2002/MDKSA-2002-037.php
SuSE Security Announcement: SuSE-SA:2002:019 (Google Search)
http://www.novell.com/linux/security/advisories/2002_19_dhcp.html
http://archives.neohapsis.com/archives/vulnwatch/2002-q2/0063.html
XForce ISS Database: dhcpd-nsupdate-format-string(9039)
http://www.iss.net/security_center/static/9039.php




© 1998-2024 E-Soft Inc. All rights reserved.