CVE-2003-0026

Current Description

Multiple stack-based buffer overflows in the error handling routines of the minires library, as used in the NSUPDATE capability for ISC DHCPD 3.0 through 3.0.1RC10, allow remote attackers to execute arbitrary code via a DHCP message containing a long hostname.

Basic Data

PublishedJanuary 17, 2003
Last ModifiedJuly 11, 2017
Assignercve@mitre.org
Data TypeCVE
Data FormatMITRE
Data Version4.0
Problem TypeNVD-CWE-Other
CVE Data Version4.0

Base Metric V2

CVSS 2 - Version2.0
CVSS 2 - Vector StringAV:N/AC:L/Au:N/C:P/I:P/A:P
CVSS 2 - Access VectorNETWORK
CVSS 2 - Access ComplexityLOW
CVSS 2 - AuthenticationNONE
CVSS 2 - Confidentiality ImpactPARTIAL
CVSS 2 - Availability ImpactPARTIAL
CVSS 2 - Base Score7.5
SeverityHIGH
Exploitability Score10.0
Impact Score6.4
Obtain All Privilegefalse
Obtain User Privilegetrue
Obtain Other Privilegefalse

Base Metric V3

No data provided.

Configurations

  • OR - Configuration 1
    Cpe VersionPartVendorProductVersionUpdateEditionLanguageSW EditionTarget SWTarget HWOtherVersion Start IncludingVersion End IncludingVersion Start ExcludingVersion End Excluding
    2.3ApplicationIscDhcpd3.0*******
    2.3ApplicationIscDhcpd3.0.1rc1******
    2.3ApplicationIscDhcpd3.0.1rc2******
    2.3ApplicationIscDhcpd3.0.1rc3******
    2.3ApplicationIscDhcpd3.0.1rc4******
    2.3ApplicationIscDhcpd3.0.1rc5******
    2.3ApplicationIscDhcpd3.0.1rc6******
    2.3ApplicationIscDhcpd3.0.1rc7******
    2.3ApplicationIscDhcpd3.0.1rc8******

Vulnerable Software List

VendorProductVersions
Isc Dhcpd 3.0, 3.0.1

References

NameSourceURLTags
20030122 [securityslackware.com: [slackware-security] New DHCP packages available]http://archives.neohapsis.com/archives/bugtraq/2003-01/0250.htmlBUGTRAQ
CLA-2003:562http://distro.conectiva.com.br/atualizacoes/?id=a&anuncio=000562CONECTIVA
CA-2003-01http://www.cert.org/advisories/CA-2003-01.htmlCERTPatch Third Party Advisory US Government Resource
N-031http://www.ciac.org/ciac/bulletins/n-031.shtmlCIAC
DSA-231http://www.debian.org/security/2003/dsa-231DEBIANPatch Vendor Advisory
VU#284857http://www.kb.cert.org/vuls/id/284857CERT-VNPatch Third Party Advisory US Government Resource
MDKSA-2003:007http://www.mandriva.com/security/advisories?name=MDKSA-2003:007MANDRAKE
OpenPKG-SA-2003.002http://www.openpkg.com/security/advisories/OpenPKG-SA-2003.002.htmlOPENPKG
RHSA-2003:011http://www.redhat.com/support/errata/RHSA-2003-011.htmlREDHATPatch Vendor Advisory
6627http://www.securityfocus.com/bid/6627BID
1005924http://www.securitytracker.com/id?1005924SECTRACK
SuSE-SA:2003:006http://www.suse.com/de/security/2003_006_dhcp.htmlSUSE
dhcpd-minires-multiple-bo(11073)https://exchange.xforce.ibmcloud.com/vulnerabilities/11073XF