Lucene search

[email protected]CVE-2000-0585

HistoryOct 13, 2000 - 4:00 a.m.

CVE-2000-0585

2000-10-1304:00:00

[email protected]

web.nvd.nist.gov

cve-2000-0585

isc

dhcp

dhclient

remote attack

command execution

shell metacharacters

nvd.

10 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

8.1 High

AI Score

Confidence

Low

0.023 Low

EPSS

Percentile

89.7%

JSON

ISC DHCP client program dhclient allows remote attackers to execute arbitrary commands via shell metacharacters.

Affected configurations

NVD

Node

iscdhcp_clientMatch2.0

iscdhcp_clientMatch3.0b1

CPENameOperatorVersion
isc:dhcp_clientisc dhcp clienteq2.0
isc:dhcp_clientisc dhcp clienteq3.0b1

CPE	Name	Operator	Version
isc:dhcp_client	isc dhcp client	eq	2.0
isc:dhcp_client	isc dhcp client	eq	3.0b1

References

ftp://ftp.FreeBSD.org/pub/FreeBSD/CERT/advisories/FreeBSD-SA-00:34.dhclient.asc

ftp://ftp.NetBSD.ORG/pub/NetBSD/misc/security/advisories/NetBSD-SA2000-008.txt.asc

archives.neohapsis.com/archives/bugtraq/2000-06/0247.html

archives.neohapsis.com/archives/bugtraq/2000-07/0014.html

www.debian.org/security/2000/20000628

www.novell.com/linux/security/advisories/suse_security_announce_56.html

www.securityfocus.com/bid/1388

exchange.xforce.ibmcloud.com/vulnerabilities/4772

10 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

8.1 High

AI Score

Confidence

Low

0.023 Low

EPSS

Percentile

89.7%

JSON

Related for CVE-2000-0585

nvd1 cvelist1