CVE-2004-1006 Information

Description

Format string vulnerability in the log functions in dhcpd for dhcp 2.x allows remote DNS servers to execute arbitrary code via certain DNS messages a different vulnerability than CVE-2002-0702.

Reference

http://archives.neohapsis.com/archives/bugtraq/2004-10/0287.html http://archives.neohapsis.com/archives/bugtraq/2004-11/0037.html http://marc.info/?l=bugtraq&m=109968710822449&w=2 http://www.debian.org/security/2004/dsa-584 http://www.kb.cert.org/vuls/id/448384 http://www.redhat.com/support/errata/RHSA-2005-212.html http://www.securityfocus.com/bid/11591 https://exchange.xforce.ibmcloud.com/vulnerabilities/17963