Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
amazonAmazonALAS-2018-1024
HistoryMay 25, 2018 - 6:16 p.m.

Low: dhcp

2018-05-2518:16:00
alas.aws.amazon.com
23

7.5 High

CVSS3

Attack Vector

ADJACENT_NETWORK

Attack Complexity

HIGH

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.0/AV:A/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H

7.9 High

CVSS2

Access Vector

ADJACENT_NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:A/AC:M/Au:N/C:C/I:C/A:C

0.973 High

EPSS

Percentile

99.9%

JSON

Issue Overview:

Command injection vulnerability in the DHCP client NetworkManager integration script
A command injection flaw was found in the NetworkManager integration script included in the DHCP client packages in Amazon Linux 2. A malicious DHCP server, or an attacker on the local network able to spoof DHCP responses, could use this flaw to execute arbitrary commands with root privileges on systems using NetworkManager and configured to obtain network configuration using the DHCP protocol. (CVE-2018-1111 )

Note: As mentioned above, the fix for this issue is in the NetworkManager integration script included with the dhcp package. The severity of this advisory has been lowered to a low as the Amazon Linux AMI does not use NetworkManager.

Affected Packages:

dhcp

Issue Correction:
Run yum update dhcp to update your system.

New Packages:

i686:  
    dhcp-devel-4.1.1-53.P1.28.amzn1.i686  
    dhcp-debuginfo-4.1.1-53.P1.28.amzn1.i686  
    dhcp-common-4.1.1-53.P1.28.amzn1.i686  
    dhcp-4.1.1-53.P1.28.amzn1.i686  
    dhclient-4.1.1-53.P1.28.amzn1.i686  
  
src:  
    dhcp-4.1.1-53.P1.28.amzn1.src  
  
x86_64:  
    dhcp-debuginfo-4.1.1-53.P1.28.amzn1.x86_64  
    dhcp-devel-4.1.1-53.P1.28.amzn1.x86_64  
    dhcp-4.1.1-53.P1.28.amzn1.x86_64  
    dhclient-4.1.1-53.P1.28.amzn1.x86_64  
    dhcp-common-4.1.1-53.P1.28.amzn1.x86_64

Additional References

Red Hat: CVE-2018-1111

Mitre: CVE-2018-1111

OSVersionArchitecturePackageVersionFilename
Amazon Linux1i686dhcp-devel< 4.1.1-53.P1.28.amzn1dhcp-devel-4.1.1-53.P1.28.amzn1.i686.rpm
Amazon Linux1i686dhcp-debuginfo< 4.1.1-53.P1.28.amzn1dhcp-debuginfo-4.1.1-53.P1.28.amzn1.i686.rpm
Amazon Linux1i686dhcp-common< 4.1.1-53.P1.28.amzn1dhcp-common-4.1.1-53.P1.28.amzn1.i686.rpm
Amazon Linux1i686dhcp< 4.1.1-53.P1.28.amzn1dhcp-4.1.1-53.P1.28.amzn1.i686.rpm
Amazon Linux1i686dhclient< 4.1.1-53.P1.28.amzn1dhclient-4.1.1-53.P1.28.amzn1.i686.rpm
Amazon Linux1x86_64dhcp-debuginfo< 4.1.1-53.P1.28.amzn1dhcp-debuginfo-4.1.1-53.P1.28.amzn1.x86_64.rpm
Amazon Linux1x86_64dhcp-devel< 4.1.1-53.P1.28.amzn1dhcp-devel-4.1.1-53.P1.28.amzn1.x86_64.rpm
Amazon Linux1x86_64dhcp< 4.1.1-53.P1.28.amzn1dhcp-4.1.1-53.P1.28.amzn1.x86_64.rpm
Amazon Linux1x86_64dhclient< 4.1.1-53.P1.28.amzn1dhclient-4.1.1-53.P1.28.amzn1.x86_64.rpm
Amazon Linux1x86_64dhcp-common< 4.1.1-53.P1.28.amzn1dhcp-common-4.1.1-53.P1.28.amzn1.x86_64.rpm

Related

nessus 29
fedora 3
redhat 11
metasploit 1
openvas 9
ibm 2
thn 1
saint 3
prion 1
amazon 1
checkpoint_advisories 2
veracode 1
packetstorm 2
f5 1
oraclelinux 3
zdt 2
redhatcve 1
cve 1
centos 2
seebug 1
exploitpack 1
exploitdb 2
trendmicroblog 1
nessus
nessus
Amazon Linux 2 : dhcp (ALAS-2018-1021)
2018-05-30 00:00:00
RHEL 6 : dhcp (RHSA-2018:1458)
2018-05-16 00:00:00
Fedora 28 : 12:dhcp (2018-23ca7a6798)
2019-01-03 00:00:00
fedora
fedora
[SECURITY] Fedora 26 Update: dhcp-4.3.5-11.fc26
2018-05-16 13:13:51
[SECURITY] Fedora 28 Update: dhcp-4.3.6-20.fc28
2018-05-15 14:48:04
[SECURITY] Fedora 27 Update: dhcp-4.3.6-10.fc27
2018-05-15 15:28:58
redhat
redhat
(RHSA-2018:1457) Critical: dhcp security update
2018-05-15 12:14:55
(RHSA-2018:1454) Critical: dhcp security update
2018-05-15 12:14:46
(RHSA-2018:1458) Critical: dhcp security update
2018-05-15 12:14:50
metasploit
metasploit
DHCP Client Command Injection (DynoRoot)
2018-05-18 16:47:08
openvas
openvas
Huawei EulerOS: Security Advisory for dhcp (EulerOS-SA-2018-1188)
2020-01-23 00:00:00
CentOS Update for dhclient CESA-2018:1453 centos7
2018-05-16 00:00:00
Fedora Update for dhcp FEDORA-2018-23ca7a6798
2018-05-16 00:00:00
ibm
ibm
Security Bulletin: A vulnerability in DHCP affects PowerKVM
2018-07-06 23:55:57
Security Bulletin: Security vulnerabilities have been identified in IBM Java Runtime and the microcode shipped with the DS8000 Hardware Management Console (HMC)
2019-06-03 16:15:02
thn
thn
Red Hat Linux DHCP Client Found Vulnerable to Command Injection Attacks
2018-05-15 20:31:00
saint
saint
Red Hat DHCP client NetworkManager integration script command injection
2018-05-18 00:00:00
Red Hat DHCP client NetworkManager integration script command injection
2018-05-18 00:00:00
Red Hat DHCP client NetworkManager integration script command injection
2018-05-18 00:00:00
prion
prion
Command injection
2018-05-17 16:29:00
amazon
amazon
Critical: dhcp
2018-05-24 18:04:00
checkpoint_advisories
checkpoint_advisories
Red Hat Linux DHCP Client Command Injection (CVE-2018-1111)
2018-05-21 00:00:00
Red Hat NetworkManager DHCP Command Injection (CVE-2018-1111)
2019-01-14 00:00:00
veracode
veracode
Arbitrary Command Execution
2019-01-15 09:22:09
packetstorm
packetstorm
DHCP Client Command Injection (DynoRoot)
2018-06-12 00:00:00
DynoRoot DHCP Command Injection
2018-05-18 00:00:00
f5
f5
K32541890 : DHCP Client Script Code Execution vulnerability CVE-2018-1111
2018-05-25 00:00:00
oraclelinux
oraclelinux
dhcp security update
2018-05-15 00:00:00
dhcp security update
2018-05-15 00:00:00
dhcp security and bug fix update
2019-08-13 00:00:00
zdt
zdt
DHCP Client - Command Injection (DynoRoot) Exploit
2018-06-13 00:00:00
DynoRoot DHCP - Client Command Injection Exploit
2018-05-18 00:00:00
redhatcve
redhatcve
CVE-2018-1111
2019-10-10 06:14:07
cve
cve
CVE-2018-1111
2018-05-17 16:29:00
centos
centos
dhclient, dhcp security update
2018-05-15 15:51:39
dhclient, dhcp security update
2018-05-15 17:32:34
seebug
seebug
DHCP Client Script Code Execution Vulnerability(CVE-2018-1111)
2018-05-16 00:00:00
exploitpack
exploitpack
DynoRoot DHCP Client - Command Injection
2018-05-18 00:00:00
exploitdb
exploitdb
DHCP Client - Command Injection &#039;DynoRoot&#039; (Metasploit)
2018-06-13 00:00:00
DynoRoot DHCP Client - Command Injection
2018-05-18 00:00:00
trendmicroblog
trendmicroblog
TippingPoint Threat Intelligence and Zero-Day Coverage – Week of May 14, 2018
2018-05-18 14:52:12

7.5 High

CVSS3

Attack Vector

ADJACENT_NETWORK

Attack Complexity

HIGH

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.0/AV:A/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H

7.9 High

CVSS2

Access Vector

ADJACENT_NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:A/AC:M/Au:N/C:C/I:C/A:C

0.973 High

EPSS

Percentile

99.9%

JSON
Related for ALAS-2018-1024
nessus29fedora3redhat11metasploit1openvas9ibm2thn1saint3prion1amazon1checkpoint_advisories2veracode1packetstorm2f51oraclelinux3zdt2redhatcve1cve1centos2seebug1exploitpack1exploitdb2trendmicroblog1