CVE

Id
778  
CVE No.
CVE-1999-0798  
Status
Candidate  
Description
Buffer overflow in bootpd on OpenBSD, FreeBSD, and Linux systems via a malformed header type.  
Phase
Proposed (19991222)  
Votes
ACCEPT(3) Baker, Ozancin, Stracener | MODIFY(1) Frech | NOOP(1) Christey  
Comments
Christey> Is CVE-1999-0389 a duplicate of CVE-1999-0798? CVE-1999-0389 | has January 1999 dates associated with it, while CVE-1999-0798 | was reported in late December. | | http://marc.theaimsgroup.com/?l=bugtraq&m=91278867118128&w=2 | | SCO appears to have acknowledged this as well: | ftp://ftp.sco.com/SSE/security_bulletins/SB-99.01a | | The poster also claims that OpenBSD fixed this as well. | Frech> XF:bootp-remote-bo | Christey> Further analysis indicates that this is a duplicate of CVE-1999-0799 | CHANGE> [Christey changed vote from REJECT to NOOP] | Christey> What was I thinking? Brian Caswell pointed out that this is | *not* the same bug as CVE-1999-0799. As reported in the | 1998 Bugtraq post, the bug is in bootpd.c, and is related | to providing an htype value that is used as an index | into an array, and exceeds the intended boundaries of that | array.  

Actions

Related CVE References

Id CVE Id CVE No. Reference Actions
1664 778 CVE-1999-0798 BUGTRAQ:19981204 bootpd remote vulnerability  View

Related JVN