Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact
10
CVSSv2

CVE-2004-0461

Published: 06/08/2004 Updated: 11/07/2017
CVSS v2 Base Score: 10 | Impact Score: 10 | Exploitability Score: 10
VMScore: 890
Vector: AV:N/AC:L/Au:N/C:C/I:C/A:C
Subscribe to Infoblox

Vulnerability Summary

The DHCP daemon (DHCPD) for ISC DHCP 3.0.1rc12 and 3.0.1rc13, when compiled in environments that do not provide the vsnprintf function, uses C include files that define vsnprintf to use the less safe vsprintf function, which can lead to buffer overflow vulnerabilities that enable a denial of service (server crash) and possibly execute arbitrary code.

Vulnerable Product Search on Vulmon Subscribe to Product

infoblox dns_one_appliance 2.4.0.8a

infoblox dns_one_appliance 2.3.1_r5

infoblox dns_one_appliance 2.4.0.8

suse suse_email_server iii

suse suse_linux_admin-cd_for_firewall

suse suse_linux_firewall_cd

suse suse_linux_office_server

isc dhcpd 3.0.1

suse suse_linux_connectivity_server

suse suse_linux_database_server

mandrakesoft mandrake linux 10.0

mandrakesoft mandrake linux 9.0

suse suse linux 8.0

suse suse linux 8.1

mandrakesoft mandrake linux 9.2

redhat fedora core core_2.0

suse suse linux 9.0

suse suse linux 7

suse suse linux 9.1

mandrakesoft mandrake linux 9.1

suse suse linux 8.2

suse suse linux 8

References

NVD-CWE-Otherhttp://www.securityfocus.com/bid/10591http://www.us-cert.gov/cas/techalerts/TA04-174A.htmlhttp://www.kb.cert.org/vuls/id/654390http://www.novell.com/linux/security/advisories/2004_19_dhcp_server.htmlhttp://www.xerox.com/downloads/usa/en/c/cert_XRX06_004_v11.pdfhttp://secunia.com/advisories/23265http://www.mandriva.com/security/advisories?name=MDKSA-2004:061http://marc.info/?l=bugtraq&m=108795911203342&w=2http://marc.info/?l=bugtraq&m=108843959502356&w=2http://marc.info/?l=bugtraq&m=108938625206063&w=2https://exchange.xforce.ibmcloud.com/vulnerabilities/16476https://nvd.nist.govhttps://www.kb.cert.org/vuls/id/654390
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-3581reflected XSSCVE-2024-26925CVE-2024-27956LFICVE-2024-3607CVE-2024-3107CVE-2024-3295SQL
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook