CVE-2004-1006

Published Mar 1, 2005

Last updated 7 years ago

CVSS info 10.0

Overview

Description: Format string vulnerability in the log functions in dhcpd for dhcp 2.x allows remote DNS servers to execute arbitrary code via certain DNS messages, a different vulnerability than CVE-2002-0702.
Source: cve@mitre.org
NVD status: Modified

Risk scores

CVSS 2.0

Type: Primary
Base score: 10
Impact score: 10
Exploitability score: 10
Vector string: AV:N/AC:L/Au:N/C:C/I:C/A:C

Weaknesses

nvd@nist.gov: NVD-CWE-Other

Hype score: Not currently trending

Configurations

[
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:a:isc:dhcpd:2.0.pl5:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "8313208D-18D7-4D8D-8F3A-F70B775C06C2"
          },
          {
            "criteria": "cpe:2.3:a:isc:dhcpd:3.0:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "747BD317-A9FF-41CD-95D4-FAEA3BA6DBD9"
          },
          {
            "criteria": "cpe:2.3:a:isc:dhcpd:3.0:rc12:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "FC618626-6A81-40EC-90B8-662362134042"
          },
          {
            "criteria": "cpe:2.3:a:isc:dhcpd:3.0:rc4:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "4721D0B6-02E0-4C59-B3A2-25BEB1A1589F"
          },
          {
            "criteria": "cpe:2.3:a:isc:dhcpd:3.0.1:rc1:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "A0148CB1-A2F1-4B66-9F25-B1F7C54A8EDB"
          },
          {
            "criteria": "cpe:2.3:a:isc:dhcpd:3.0.1:rc10:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "A8EF4C31-3D84-4B33-82E4-4B6977D9960F"
          },
          {
            "criteria": "cpe:2.3:a:isc:dhcpd:3.0.1:rc11:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "8C838051-A4C2-48F2-853E-3769986CA360"
          },
          {
            "criteria": "cpe:2.3:a:isc:dhcpd:3.0.1:rc12:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "BD76976F-8BE2-4A96-A785-FDE10B0E430A"
          },
          {
            "criteria": "cpe:2.3:a:isc:dhcpd:3.0.1:rc13:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "1A70E5CF-4B56-4201-A481-74A3FD6C4BEB"
          },
          {
            "criteria": "cpe:2.3:a:isc:dhcpd:3.0.1:rc14:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "99B1DBEA-9591-44CE-9EBF-707B5F6C4828"
          },
          {
            "criteria": "cpe:2.3:a:isc:dhcpd:3.0.1:rc2:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "2DE1BF66-E066-4043-AE4F-2558B23FF759"
          },
          {
            "criteria": "cpe:2.3:a:isc:dhcpd:3.0.1:rc3:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "35D41D26-8318-45D0-AD6F-2043AD74F993"
          },
          {
            "criteria": "cpe:2.3:a:isc:dhcpd:3.0.1:rc4:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "45242D44-9BDC-4DB1-B24A-4227C76C6F88"
          },
          {
            "criteria": "cpe:2.3:a:isc:dhcpd:3.0.1:rc5:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "76051D4C-4C8C-4010-AE73-A4AAE7CF823E"
          },
          {
            "criteria": "cpe:2.3:a:isc:dhcpd:3.0.1:rc6:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "AC3987D7-24DD-49A4-84FB-61E9171FFF61"
          },
          {
            "criteria": "cpe:2.3:a:isc:dhcpd:3.0.1:rc7:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "3AF3A0F6-8C85-4288-821E-418DE6A37AE7"
          },
          {
            "criteria": "cpe:2.3:a:isc:dhcpd:3.0.1:rc8:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "F2D64F9C-6B3A-4E53-A717-4FF7CC56E842"
          },
          {
            "criteria": "cpe:2.3:a:isc:dhcpd:3.0.1:rc9:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "DE6B2085-9C5F-4025-9BDB-3D9B9FEC2879"
          },
          {
            "criteria": "cpe:2.3:a:isc:dhcpd:3.0_b2pl9:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "283916DB-9E3D-44AC-85B2-FC4A6BE4A692"
          },
          {
            "criteria": "cpe:2.3:a:isc:dhcpd:3.0_b2pl23:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "3545F855-751F-42B9-9B8E-C624EE4E9008"
          },
          {
            "criteria": "cpe:2.3:a:isc:dhcpd:3.0_pl1:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "488EF544-0F9A-4C3C-964C-D2CBCDD1F086"
          },
          {
            "criteria": "cpe:2.3:a:isc:dhcpd:3.0_pl2:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "CB90881D-0A08-4AA9-9F26-7C01E158E775"
          }
        ],
        "operator": "OR"
      }
    ]
  }
]

Overview

Risk scores

CVSS 2.0

Weaknesses

Social media

Configurations

References