CVE-2004-0460

Name of the Vulnerable Software and Affected Versions ISC DHCP versions 3.0.1rc12 through 3.0.1rc13

Description The issue is related to a buffer overflow in the logging capability for the DHCP daemon. This can be triggered by remote attackers sending multiple hostname options in various DHCP messages, such as DISCOVER, OFFER, REQUEST, ACK, or NAK messages. The vulnerability can cause a denial of service, resulting in a server crash, and potentially allow the execution of arbitrary code when a long string is generated while writing to a log file.

Recommendations For ISC DHCP versions 3.0.1rc12 and 3.0.1rc13, consider disabling the logging capability for the DHCP daemon until a patch is available. Restrict access to the DHCP daemon to minimize the risk of exploitation. Avoid using the hostname options in DHCP messages until the issue is resolved. At the moment, there is no information about a newer version that contains a fix for this vulnerability.