Back to search
CVE-2002-0702
Published: Jul 23, 2002
Modified: Aug 8, 2024
PUBLISHED
Description
Format string vulnerabilities in the logging routines for dynamic DNS code (print.c) of ISC DHCP daemon (DHCPD) 3 to 3.0.1rc8, with the NSUPDATE option enabled, allow remote malicious DNS servers to execute arbitrary code via format strings in a DNS server response.
| Vendor | Product | Versions |
|---|---|---|
n/a | n/a | affected n/a |
References
4701
vdb-entry
x_refsource_BID
VU#854315
third-party-advisory
x_refsource_CERT-VN
SuSE-SA:2002:019
vendor-advisory
x_refsource_SUSE
CA-2002-12
third-party-advisory
x_refsource_CERT
20020508 [NGSEC-2002-2] ISC DHCPDv3, remote root compromise
mailing-list
x_refsource_BUGTRAQ
CLA-2002:483
vendor-advisory
x_refsource_CONECTIVA
MDKSA-2002:037
vendor-advisory
x_refsource_MANDRAKE
20020508 [VulnWatch] [NGSEC-2002-2] ISC DHCPDv3, remote root compromise
mailing-list
x_refsource_VULNWATCH
dhcpd-nsupdate-format-string(9039)
vdb-entry
x_refsource_XF
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now