Vulnerabilities > CVE-2004-0601 - Unspecified vulnerability in Distcc

047910
CVSS 7.5 - HIGH
Attack vector
NETWORK
Attack complexity
LOW
Privileges required
NONE
Confidentiality impact
PARTIAL
Integrity impact
PARTIAL
Availability impact
PARTIAL
network
low complexity
distcc
nessus

Summary

distcc before 2.16, when running on 64-bit platforms, does not interpret IP-based access control rules correctly, which could allow remote attackers to bypass intended restrictions.

Nessus

  • NASL familyFreeBSD Local Security Checks
    NASL idFREEBSD_DISTCC_216.NASL
    descriptionThe following package needs to be updated: distcc
    last seen2016-09-26
    modified2004-10-18
    plugin id15488
    published2004-10-18
    reporterTenable
    sourcehttps://www.tenable.com/plugins/index.php?view=single&id=15488
    titleFreeBSD : distcc -- incorrect parsing of IP access control rules (37)
  • NASL familyFreeBSD Local Security Checks
    NASL idFREEBSD_PKG_E8D4800F154711D990A300010327614A.NASL
    descriptionFix bug that might cause IP-based access control rules not to be interpreted correctly on 64-bit platforms.
    last seen2020-06-01
    modified2020-06-02
    plugin id36433
    published2009-04-23
    reporterThis script is Copyright (C) 2009-2019 and is owned by Tenable, Inc. or an Affiliate thereof.
    sourcehttps://www.tenable.com/plugins/nessus/36433
    titleFreeBSD : distcc -- incorrect parsing of IP access control rules (e8d4800f-1547-11d9-90a3-00010327614a)