FreeBSD VuXML: Documenting security issues in FreeBSD and the FreeBSD Ports Collection

isc-dhcp3-server buffer overflow in logging mechanism

Affected packages
3.0.1.r12 <= isc-dhcp3-relay < 3.0.1.r14
3.0.1.r12 <= isc-dhcp3-server < 3.0.1.r14

Details

VuXML ID 7a9d5dfe-c507-11d8-8898-000d6111a684
Discovery 2004-06-22
Entry 2004-06-25
Modified 2004-08-12

A buffer overflow exists in the logging functionality of the DHCP daemon which could lead to Denial of Service attacks and has the potential to allow attackers to execute arbitrary code.

References

CERT/CC Vulnerability Note 317350
CVE Name CVE-2004-0460
Message BAY13-F94UHMuEEkHMz0005c4f7@hotmail.com
Message 40DFAB69.1060909@sympatico.ca
URL http://www.osvdb.org/7237
US-CERT Technical Cyber Security Alert TA04-174A