DHCPCD Character Expansion Remote Command Execution Vulnerability

Bugtraq ID: 6200
Class: Input Validation Error
CVE: CVE-2002-1403
CVE-2002-1403
Remote: Yes
Local: No
Published: Nov 18 2002 12:00AM
Updated: Jul 11 2009 07:16PM
Credit: Vulnerability announced in a Conectiva security advisory.
Vulnerable: Phystech dhcpcd 1.3.22 -pl1
+ MandrakeSoft Multi Network Firewall 2.0
+ MandrakeSoft Single Network Firewall 7.2
+ Mandriva Linux Mandrake 9.0
+ Mandriva Linux Mandrake 8.2 ppc
+ Mandriva Linux Mandrake 8.2
+ Mandriva Linux Mandrake 8.1 ia64
+ Mandriva Linux Mandrake 8.1
+ Mandriva Linux Mandrake 8.0 ppc
+ Mandriva Linux Mandrake 8.0
+ Mandriva Linux Mandrake 7.2
Phystech dhcpcd 1.3.17 -pl2
+ Debian Linux 2.2 sparc
+ Debian Linux 2.2 powerpc
+ Debian Linux 2.2 IA-32
+ Debian Linux 2.2 arm
+ Debian Linux 2.2 alpha
+ Debian Linux 2.2 68k
+ Debian Linux 2.2
Not Vulnerable: Phystech dhcpcd 1.3.22 -pl3
Phystech dhcpcd 1.3.22 -pl2


 

Privacy Statement
Copyright 2010, SecurityFocus