Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in

CVE-2011-0997

🗓️ 08 Apr 2011 15:00:00Reported by mitreType 
cve
 cve🔗 web.nvd.nist.gov👁 119 Views🌐 WEB

Vulnerability in dhclient in ISC DHCP 3.0.x through 4.2.x

Related
Detection
Refs
Paths
ReporterTitlePublishedViews
Family
0day.today		15 TOTOLINK Router Models - Multiple RCE Vulnerabilities
17 Jul 201500:00
zdt
FreeBSD		isc-dhcp-client -- dhclient does not strip or escape shell meta-characters
5 Apr 201100:00
freebsd
Tenable Nessus		ISC dhclient < 3.1-ESV-R1 / 4.1-ESV-R2 / 4.2.1-P1 Remote Code Execution
23 May 201300:00
nessus
Tenable Nessus		Apple Time Capsule and AirPort Base Station (802.11n) Firmware < 7.6 (APPLE-SA-2011-11-10-2)
16 Nov 201100:00
nessus
Tenable Nessus		CentOS 4 / 5 : dhcp (CESA-2011:0428)
11 Apr 201100:00
nessus
Tenable Nessus		Debian DSA-2216-1 : isc-dhcp - missing input sanitization
11 Apr 201100:00
nessus
Tenable Nessus		Debian DSA-2217-1 : dhcp3 - missing input sanitization
11 Apr 201100:00
nessus
Tenable Nessus		F5 Networks BIG-IP : DHCP Client vulnerability (SOL13219)
10 Oct 201400:00
nessus
Tenable Nessus		Fedora 13 : dhcp-4.1.2-4.ESV.R2.fc13 (2011-0848)
19 Apr 201100:00
nessus
Tenable Nessus		Fedora 14 : dhcp-4.2.0-23.P2.fc14 (2011-10705)
7 Sep 201100:00
nessus
Rows per page
NVD
Node
iscdhcpMatch3.0
OR
iscdhcpMatch3.0.1-
OR
iscdhcpMatch3.0.1rc1
OR
iscdhcpMatch3.0.1rc10
OR
iscdhcpMatch3.0.1rc11
OR
iscdhcpMatch3.0.1rc12
OR
iscdhcpMatch3.0.1rc13
OR
iscdhcpMatch3.0.1rc14
OR
iscdhcpMatch3.0.1rc2
OR
iscdhcpMatch3.0.1rc5
OR
iscdhcpMatch3.0.1rc6
OR
iscdhcpMatch3.0.1rc7
OR
iscdhcpMatch3.0.1rc8
OR
iscdhcpMatch3.0.1rc9
OR
iscdhcpMatch3.0.2-
OR
iscdhcpMatch3.0.2b1
OR
iscdhcpMatch3.0.2rc1
OR
iscdhcpMatch3.0.2rc2
OR
iscdhcpMatch3.0.2rc3
OR
iscdhcpMatch3.0.3-
OR
iscdhcpMatch3.0.3b1
OR
iscdhcpMatch3.0.3b2
OR
iscdhcpMatch3.0.3b3
OR
iscdhcpMatch3.0.4-
OR
iscdhcpMatch3.0.4b1
OR
iscdhcpMatch3.0.4b2
OR
iscdhcpMatch3.0.4b3
OR
iscdhcpMatch3.0.4rc1
OR
iscdhcpMatch3.0.5-
OR
iscdhcpMatch3.0.5rc1
OR
iscdhcpMatch3.0.6rc1
OR
iscdhcpMatch3.1-esv
OR
iscdhcpMatch3.1.0-
OR
iscdhcpMatch3.1.0a1
OR
iscdhcpMatch3.1.0a2
OR
iscdhcpMatch3.1.0a3
OR
iscdhcpMatch3.1.0b1
OR
iscdhcpMatch3.1.0b2
OR
iscdhcpMatch3.1.0rc1
OR
iscdhcpMatch3.1.1rc1
OR
iscdhcpMatch3.1.1rc2
OR
iscdhcpMatch3.1.2-
OR
iscdhcpMatch3.1.2b1
OR
iscdhcpMatch3.1.2rc1
OR
iscdhcpMatch3.1.3-
OR
iscdhcpMatch3.1.3b1
OR
iscdhcpMatch3.1.3rc1
Node
iscdhcpMatch4.1-esv-
OR
iscdhcpMatch4.1-esvrc1
OR
iscdhcpMatch4.2.0-
OR
iscdhcpMatch4.2.0a1
OR
iscdhcpMatch4.2.0a2
OR
iscdhcpMatch4.2.0b1
OR
iscdhcpMatch4.2.0b2
OR
iscdhcpMatch4.2.0p1
OR
iscdhcpMatch4.2.0rc1
OR
iscdhcpMatch4.2.1-
OR
iscdhcpMatch4.2.1b1
OR
iscdhcpMatch4.2.1rc1
Node
debiandebian_linuxMatch5.0
OR
debiandebian_linuxMatch6.0
OR
debiandebian_linuxMatch7.0
Node
canonicalubuntu_linuxMatch6.06lts
OR
canonicalubuntu_linuxMatch8.04lts
OR
canonicalubuntu_linuxMatch9.10
OR
canonicalubuntu_linuxMatch10.04lts
OR
canonicalubuntu_linuxMatch10.10
ParameterPositionPathDescriptionCWE
echo 'Content-type: text/plain';echo;echo;PATH=$PATH:/sbin $2 $3 $4request bodycgi-bin/shHTTP CGI file invocation that enables command execution from a DHCP/HTTP exploit (RCE via shell metacharacters).CWE-20

Data

Build on a solid foundation with Vulners data

We provide the essential building blocks for cybersecurity solutions with comprehensive, structured, and constantly updated vulnerability and exploits data

Api

Power your application with Vulners API

The Vulners REST API offers reliable, high-performance access to vulnerability intelligence, with 99.9% SLA uptime and CDN-backed data delivery for seamless global access

App

Assess and manage vulnerabilities with Vulners tools

Built on top of Vulners' database and SDK, end-user solutions give security professionals and developers lightweight and powerful tools for vulnerability remediation

Book a live demo
29 Apr 2026 01:13Current
7.6High risk
Vulners AI Score7.6
CVSS 27.5
EPSS0.73501
CWE-20
cve-2011-0997dhclientisc dhcpremote code executionshell metacharactersnvd
119