Lucene search
Copyright (C) 2012 Greenbone AGOPENVAS:136141256231064439HistorySep 10, 2012 - 12:00 a.m.
Slackware: Security Advisory (SSA:2009-195-01)
2012-09-1000:00:00
Copyright (C) 2012 Greenbone AG
plugins.openvas.org
24
7.7 High
AI Score
Confidence
High
10 High
CVSS2
Access Vector
NETWORK
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:L/Au:N/C:C/I:C/A:C
0.076 Low
EPSS
Percentile
94.1%
The remote host is missing an update for the
# SPDX-FileCopyrightText: 2012 Greenbone AG
# Some text descriptions might be excerpted from (a) referenced
# source(s), and are Copyright (C) by the respective right holder(s).
#
# SPDX-License-Identifier: GPL-2.0-only
if(description)
{
script_oid("1.3.6.1.4.1.25623.1.0.64439");
script_cve_id("CVE-2009-0692");
script_tag(name:"creation_date", value:"2012-09-10 23:34:21 +0000 (Mon, 10 Sep 2012)");
script_version("2024-02-01T14:37:10+0000");
script_tag(name:"last_modification", value:"2024-02-01 14:37:10 +0000 (Thu, 01 Feb 2024)");
script_tag(name:"cvss_base", value:"10.0");
script_tag(name:"cvss_base_vector", value:"AV:N/AC:L/Au:N/C:C/I:C/A:C");
script_name("Slackware: Security Advisory (SSA:2009-195-01)");
script_category(ACT_GATHER_INFO);
script_copyright("Copyright (C) 2012 Greenbone AG");
script_family("Slackware Local Security Checks");
script_dependencies("gather-package-list.nasl");
script_mandatory_keys("ssh/login/slackware_linux", "ssh/login/slackpack", re:"ssh/login/release=SLK(10\.0|10\.1|10\.2|11\.0|12\.0|12\.1|12\.2|8\.1|9\.0|9\.1|current)");
script_xref(name:"Advisory-ID", value:"SSA:2009-195-01");
script_xref(name:"URL", value:"http://www.slackware.com/security/viewer.php?l=slackware-security&y=2009&m=slackware-security.561471");
script_tag(name:"summary", value:"The remote host is missing an update for the 'dhcp' package(s) announced via the SSA:2009-195-01 advisory.");
script_tag(name:"vuldetect", value:"Checks if a vulnerable package version is present on the target host.");
script_tag(name:"insight", value:"New dhcp packages are available for Slackware 8.1, 9.0, 9.1, 10.0, 10.1, 10.2,
11.0, 12.0, 12.1, 12.2, and -current to fix a security issue with dhclient.
Note that dhclient is not the default DHCP client in Slackware's networking
scripts, dhcpcd is. However, if you use dhclient on a network where someone
could deploy a hostile DHCP server, you should upgrade to the new package.
More details about this issue may be found in the Common
Vulnerabilities and Exposures (CVE) database:
[link moved to references]
Here are the details from the Slackware 12.2 ChangeLog:
+--------------------------+
patches/packages/dhcp-3.1.2p1-i486-1_slack12.2.tgz: Upgraded.
A stack overflow vulnerability was fixed in dhclient that could allow
remote attackers to execute arbitrary commands as root on the system,
or simply terminate the client, by providing an over-long subnet-mask
option.
For more information, see:
[link moved to references]
(* Security fix *)
+--------------------------+");
script_tag(name:"affected", value:"'dhcp' package(s) on Slackware 8.1, Slackware 9.0, Slackware 9.1, Slackware 10.0, Slackware 10.1, Slackware 10.2, Slackware 11.0, Slackware 12.0, Slackware 12.1, Slackware 12.2, Slackware current.");
script_tag(name:"solution", value:"Please install the updated package(s).");
script_tag(name:"solution_type", value:"VendorFix");
script_tag(name:"qod_type", value:"package");
exit(0);
}
include("revisions-lib.inc");
include("pkg-lib-slack.inc");
release = slk_get_ssh_release();
if(!release)
exit(0);
res = "";
report = "";
if(release == "SLK10.0") {
if(!isnull(res = isslkpkgvuln(pkg:"dhcp", ver:"3.1.2p1-i486-1_slack10.0", rls:"SLK10.0"))) {
report += res;
}
if(report != "") {
security_message(data:report);
} else if(__pkg_match) {
exit(99);
}
exit(0);
}
if(release == "SLK10.1") {
if(!isnull(res = isslkpkgvuln(pkg:"dhcp", ver:"3.1.2p1-i486-1_slack10.1", rls:"SLK10.1"))) {
report += res;
}
if(report != "") {
security_message(data:report);
} else if(__pkg_match) {
exit(99);
}
exit(0);
}
if(release == "SLK10.2") {
if(!isnull(res = isslkpkgvuln(pkg:"dhcp", ver:"3.1.2p1-i486-1_slack10.2", rls:"SLK10.2"))) {
report += res;
}
if(report != "") {
security_message(data:report);
} else if(__pkg_match) {
exit(99);
}
exit(0);
}
if(release == "SLK11.0") {
if(!isnull(res = isslkpkgvuln(pkg:"dhcp", ver:"3.1.2p1-i486-1_slack11.0", rls:"SLK11.0"))) {
report += res;
}
if(report != "") {
security_message(data:report);
} else if(__pkg_match) {
exit(99);
}
exit(0);
}
if(release == "SLK12.0") {
if(!isnull(res = isslkpkgvuln(pkg:"dhcp", ver:"3.1.2p1-i486-1_slack12.0", rls:"SLK12.0"))) {
report += res;
}
if(report != "") {
security_message(data:report);
} else if(__pkg_match) {
exit(99);
}
exit(0);
}
if(release == "SLK12.1") {
if(!isnull(res = isslkpkgvuln(pkg:"dhcp", ver:"3.1.2p1-i486-1_slack12.1", rls:"SLK12.1"))) {
report += res;
}
if(report != "") {
security_message(data:report);
} else if(__pkg_match) {
exit(99);
}
exit(0);
}
if(release == "SLK12.2") {
if(!isnull(res = isslkpkgvuln(pkg:"dhcp", ver:"3.1.2p1-i486-1_slack12.2", rls:"SLK12.2"))) {
report += res;
}
if(report != "") {
security_message(data:report);
} else if(__pkg_match) {
exit(99);
}
exit(0);
}
if(release == "SLK8.1") {
if(!isnull(res = isslkpkgvuln(pkg:"dhcp", ver:"3.1.2p1-i386-1_slack8.1", rls:"SLK8.1"))) {
report += res;
}
if(report != "") {
security_message(data:report);
} else if(__pkg_match) {
exit(99);
}
exit(0);
}
if(release == "SLK9.0") {
if(!isnull(res = isslkpkgvuln(pkg:"dhcp", ver:"3.1.2p1-i386-1_slack9.0", rls:"SLK9.0"))) {
report += res;
}
if(report != "") {
security_message(data:report);
} else if(__pkg_match) {
exit(99);
}
exit(0);
}
if(release == "SLK9.1") {
if(!isnull(res = isslkpkgvuln(pkg:"dhcp", ver:"3.1.2p1-i486-1_slack9.1", rls:"SLK9.1"))) {
report += res;
}
if(report != "") {
security_message(data:report);
} else if(__pkg_match) {
exit(99);
}
exit(0);
}
if(release == "SLKcurrent") {
if(!isnull(res = isslkpkgvuln(pkg:"dhcp", ver:"3.1.2p1-i486-1", rls:"SLKcurrent"))) {
report += res;
}
if(!isnull(res = isslkpkgvuln(pkg:"dhcp", ver:"3.1.2p1-x86_64-1", rls:"SLKcurrent"))) {
report += res;
}
if(report != "") {
security_message(data:report);
} else if(__pkg_match) {
exit(99);
}
exit(0);
}
exit(0);
Related
oraclelinux
oraclelinux
dhcp security update
2009-07-14 00:00:00
dhcp security update
2009-07-14 00:00:00
exploitpack
exploitpack
ISC DHCP dhclient 3.1.2p1 - Remote Buffer Overflow (PoC)
2009-07-27 00:00:00
nessus
nessus
FreeBSD : isc-dhcp-client -- Stack overflow vulnerability (c444c8b7-7169-11de-9ab7-000c29a67389)
2009-07-16 00:00:00
Oracle Linux 4 : dhcp (ELSA-2009-1136)
2013-07-12 00:00:00
GLSA-200907-12 : ISC DHCP: dhcpclient Remote execution of arbitrary code
2009-07-15 00:00:00
openvas
openvas
SLES11: Security update for dhcp-client
2009-10-11 00:00:00
SLES9: Security update for dhcp-client
2009-10-10 00:00:00
RedHat Security Advisory RHSA-2009:1136
2009-07-29 00:00:00
ubuntu
ubuntu
Dhcp vulnerability
2010-01-27 00:00:00
dhcp vulnerability
2009-07-14 00:00:00
checkpoint_security
checkpoint_security
seebug
seebug
ISC DHCP dhclient < 3.1.2p1 Remote Buffer Overflow PoC
2014-07-01 00:00:00
ISC DHCP dhclient < 3.1.2p1 Remote Buffer Overflow PoC
2009-07-28 00:00:00
exploitdb
exploitdb
ISC DHCP dhclient < 3.1.2p1 - Remote Buffer Overflow (PoC)
2009-07-27 00:00:00
freebsd
freebsd
isc-dhcp-client -- Stack overflow vulnerability
2009-07-14 00:00:00
ubuntucve
ubuntucve
CVE-2009-0692
2009-07-14 00:00:00
gentoo
gentoo
ISC DHCP: dhcpclient Remote execution of arbitrary code
2009-07-14 00:00:00
checkpoint_advisories
checkpoint_advisories
packetstorm
packetstorm
ISC DHCP dhclient Buffer Overflow
2009-07-28 00:00:00
prion
prion
Stack overflow
2009-07-14 20:30:00
slackware
slackware
dhcp
2009-07-14 17:34:59
redhat
redhat
(RHSA-2009:1136) Critical: dhcp security update
2009-07-14 00:00:00
(RHSA-2009:1154) Critical: dhcp security update
2009-07-14 00:00:00
cert
cert
ISC DHCP dhclient stack buffer overflow
2009-07-14 00:00:00
cve
cve
CVE-2009-0692
2009-07-14 20:30:00
threatpost
threatpost
Critical RCE Bug Found Lurking in Avaya VoIP Phones
2019-08-08 20:00:50
osv
osv
dhcp3 - arbitrary code execution
2009-07-14 00:00:00
dhcp3 - arbitrary code execution
2009-07-14 00:00:00
fedora
fedora
[SECURITY] Fedora 11 Update: dhcp-4.1.0p1-4.fc11
2009-11-10 17:47:15
[SECURITY] Fedora 10 Update: dhcp-4.0.0-37.fc10
2009-08-25 22:12:17
[SECURITY] Fedora 11 Update: dhcp-4.1.0p1-6.fc11
2010-06-24 16:20:01
securityvulns
securityvulns
[Full-disclosure] [SECURITY] [DSA 1833-1] New dhcp3 packages fix arbitrary code execution
2009-07-15 00:00:00
ISC DHCP client buffer overflow
2009-07-15 00:00:00
debian
debian
[SECURITY] [DSA 1833-2] New dhcp3 packages fix arbitrary code execution
2009-08-25 19:57:28
[SECURITY] [DSA 1833-1] New dhcp3 packages fix arbitrary code execution
2009-07-14 19:33:29
centos
centos
dhclient, dhcp security update
2009-07-15 19:59:01
suse
suse
remote code execution in dhcp-client
2009-07-15 16:27:03
vmware
vmware
7.7 High
AI Score
Confidence
High
10 High
CVSS2
Access Vector
NETWORK
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:L/Au:N/C:C/I:C/A:C
0.076 Low
EPSS
Percentile
94.1%
Related for OPENVAS:136141256231064439