CVE-2003-0026 : Multiple stack-based buffer overflows in the error handling routines of the minires library, as used in the NSUPDATE cap

Multiple stack-based buffer overflows in the error handling routines of the minires library, as used in the NSUPDATE capability for ISC DHCPD 3.0 through 3.0.1RC10, allow remote attackers to execute arbitrary code via a DHCP message containing a long hostname.

Published 2003-01-17 05:00:00

Updated 2017-07-11 01:29:27

Source MITRE

View at NVD, CVE.org

Vulnerability category: Execute code

Exploit prediction scoring system (EPSS) score for CVE-2003-0026

Probability of exploitation activity in the next 30 days: 13.47%

Percentile, the proportion of vulnerabilities that are scored at or less: ~ 95 % EPSS Score History EPSS FAQ

CVSS scores for CVE-2003-0026

Base Score	Base Severity	CVSS Vector	Exploitability Score	Impact Score	Score Source
7.5	HIGH	AV:N/AC:L/Au:N/C:P/I:P/A:P	10.0	6.4	NIST
Access Vector: Network Access Complexity: Low Authentication: None Confidentiality Impact: Partial Integrity Impact: Partial Availability Impact: Partial

References for CVE-2003-0026

http://distro.conectiva.com.br/atualizacoes/?id=a&anuncio=000562
http://www.securitytracker.com/id?1005924
http://www.openpkg.com/security/advisories/OpenPKG-SA-2003.002.html
http://www.suse.com/de/security/2003_006_dhcp.html
http://www.mandriva.com/security/advisories?name=MDKSA-2003:007
http://www.debian.org/security/2003/dsa-231

Patch;Vendor Advisory
http://www.securityfocus.com/bid/6627
http://www.redhat.com/support/errata/RHSA-2003-011.html

Patch;Vendor Advisory
https://exchange.xforce.ibmcloud.com/vulnerabilities/11073
http://archives.neohapsis.com/archives/bugtraq/2003-01/0250.html
http://www.cert.org/advisories/CA-2003-01.html

Patch;Third Party Advisory;US Government Resource
http://www.ciac.org/ciac/bulletins/n-031.shtml
http://www.kb.cert.org/vuls/id/284857

Patch;Third Party Advisory;US Government Resource

Products affected by CVE-2003-0026

ISC » Dhcpd » Version: 3.0.1 Update RC5
cpe:2.3:a:isc:dhcpd:3.0.1:rc5:*:*:*:*:*:*
Matching versions
ISC » Dhcpd » Version: 3.0.1 Update RC6
cpe:2.3:a:isc:dhcpd:3.0.1:rc6:*:*:*:*:*:*
Matching versions
ISC » Dhcpd » Version: 3.0.1 Update RC7
cpe:2.3:a:isc:dhcpd:3.0.1:rc7:*:*:*:*:*:*
Matching versions
ISC » Dhcpd » Version: 3.0.1 Update RC8
cpe:2.3:a:isc:dhcpd:3.0.1:rc8:*:*:*:*:*:*
Matching versions
ISC » Dhcpd » Version: 3.0
cpe:2.3:a:isc:dhcpd:3.0:*:*:*:*:*:*:*
Matching versions
ISC » Dhcpd » Version: 3.0.1 Update RC1
cpe:2.3:a:isc:dhcpd:3.0.1:rc1:*:*:*:*:*:*
Matching versions
ISC » Dhcpd » Version: 3.0.1 Update RC2
cpe:2.3:a:isc:dhcpd:3.0.1:rc2:*:*:*:*:*:*
Matching versions
ISC » Dhcpd » Version: 3.0.1 Update RC3
cpe:2.3:a:isc:dhcpd:3.0.1:rc3:*:*:*:*:*:*
Matching versions
ISC » Dhcpd » Version: 3.0.1 Update RC4
cpe:2.3:a:isc:dhcpd:3.0.1:rc4:*:*:*:*:*:*
Matching versions

Vulnerability Details : CVE-2003-0026

Exploit prediction scoring system (EPSS) score for CVE-2003-0026

CVSS scores for CVE-2003-0026

References for CVE-2003-0026

Products affected by CVE-2003-0026