10

CVE-2004-1006

Format string vulnerability in the log functions in dhcpd for dhcp 2.x allows remote DNS servers to execute arbitrary code via certain DNS messages, a different vulnerability than CVE-2002-0702.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
IscDhcpd Version2.0.pl5
IscDhcpd Version3.0
IscDhcpd Version3.0 Updaterc12
IscDhcpd Version3.0 Updaterc4
IscDhcpd Version3.0.1 Updaterc1
IscDhcpd Version3.0.1 Updaterc10
IscDhcpd Version3.0.1 Updaterc11
IscDhcpd Version3.0.1 Updaterc12
IscDhcpd Version3.0.1 Updaterc13
IscDhcpd Version3.0.1 Updaterc14
IscDhcpd Version3.0.1 Updaterc2
IscDhcpd Version3.0.1 Updaterc3
IscDhcpd Version3.0.1 Updaterc4
IscDhcpd Version3.0.1 Updaterc5
IscDhcpd Version3.0.1 Updaterc6
IscDhcpd Version3.0.1 Updaterc7
IscDhcpd Version3.0.1 Updaterc8
IscDhcpd Version3.0.1 Updaterc9
IscDhcpd Version3.0_b2pl9
IscDhcpd Version3.0_b2pl23
IscDhcpd Version3.0_pl1
IscDhcpd Version3.0_pl2
Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.
EPSS Metriken
Typ Quelle Score Percentile
EPSS FIRST.org 7.66% 0.911
CVSS Metriken
Quelle Base Score Exploit Score Impact Score Vector String
nvd@nist.gov 10 10 10
AV:N/AC:L/Au:N/C:C/I:C/A:C