CVE-2004-1006

Name of the Vulnerable Software and Affected Versions: dhcp versions 2.x

Description: A format string vulnerability exists in the log functions of dhcpd, allowing remote DNS servers to execute arbitrary code via certain DNS messages.

Recommendations: For dhcp version 2.x, update to a version that includes a fix for this issue, as the current version allows remote execution of arbitrary code.