Computer Security
[EN] no-pyccku

ISC DHCP client buffer overflow
SecurityVulns ID:10073
Threat Level:
Description:Buffer overflow on network mask processing.
CVE:CVE-2009-1892 (dhcpd in ISC DHCP 3.0.4 and 3.1.1, when the dhcp-client-identifier and hardware ethernet configuration settings are both used, allows remote attackers to cause a denial of service (daemon crash) via unspecified requests.)
 CVE-2009-0692 (Stack-based buffer overflow in the script_write_params method in client/dhclient.c in ISC DHCP dhclient 4.1 before 4.1.0p1, 4.0 before 4.0.1p1, 3.1 before 3.1.2p1, 3.0, and 2.0 allows remote DHCP servers to execute arbitrary code via a crafted subnet-mask option.)
Original documentdocumentDEBIAN, [Full-disclosure] [SECURITY] [DSA 1833-1] New dhcp3 packages fix arbitrary code execution (15.07.2009)

About | Terms of use | Privacy Policy
© SecurityVulns, 3APA3A, Vladimir Dubrovin
Nizhny Novgorod