VYPR
Unrated severityNVD Advisory· Published Jul 26, 2002· Updated Jun 16, 2026

CVE-2002-0702

CVE-2002-0702

Description

Format string vulnerabilities in the logging routines for dynamic DNS code (print.c) of ISC DHCP daemon (DHCPD) 3 to 3.0.1rc8, with the NSUPDATE option enabled, allow remote malicious DNS servers to execute arbitrary code via format strings in a DNS server response.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

10
  • Isc/DHCP10 versions
    cpe:2.3:a:isc:dhcpd:3.0:*:*:*:*:*:*:*+ 9 more
    • cpe:2.3:a:isc:dhcpd:3.0:*:*:*:*:*:*:*
    • cpe:2.3:a:isc:dhcpd:3.0.1:rc1:*:*:*:*:*:*
    • cpe:2.3:a:isc:dhcpd:3.0.1:rc2:*:*:*:*:*:*
    • cpe:2.3:a:isc:dhcpd:3.0.1:rc3:*:*:*:*:*:*
    • cpe:2.3:a:isc:dhcpd:3.0.1:rc4:*:*:*:*:*:*
    • cpe:2.3:a:isc:dhcpd:3.0.1:rc5:*:*:*:*:*:*
    • cpe:2.3:a:isc:dhcpd:3.0.1:rc6:*:*:*:*:*:*
    • cpe:2.3:a:isc:dhcpd:3.0.1:rc7:*:*:*:*:*:*
    • cpe:2.3:a:isc:dhcpd:3.0.1:rc8:*:*:*:*:*:*
    • (no CPE)range: >=3, <=3.0.1rc8

Patches

Vulnerability mechanics

References

10

News mentions

0

No linked articles in our index yet.