Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
osvGoogleOSV:DSA-1388-3
HistoryOct 29, 2007 - 12:00 a.m.

dhcp - buffer overflow

2007-10-2900:00:00
Google
osv.dev
6

7.2 High

CVSS2

Access Vector

LOCAL

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:L/AC:L/Au:N/C:C/I:C/A:C

JSON

The patch used to correct the DHCP server buffer overflow in DSA-1388-1
was incomplete and did not adequately resolve the problem. This update
to the previous advisory makes updated packages based on a
newer version of the patch available.

For completeness, please find below the original advisory:

It was discovered that dhcp, a DHCP server for automatic IP address assignment,
didnโ€™t correctly allocate space for network replies. This could potentially
allow a malicious DHCP client to execute arbitrary code upon the DHCP server.

For the stable distribution (etch), this problem has been fixed in
version 2.0pl5-19.5etch2.

For the unstable distribution (sid), this problem will be fixed shortly.

Updates to the old stable version (sarge) are pending.

We recommend that you upgrade your dhcp packages.

CPENameOperatorVersion
dhcpeq2.0pl5-19.5etch1
dhcpeq2.0pl5-19.5

Related

checkpoint_advisories 1
openvas 22
seebug 3
exploitpack 1
ubuntu 2
debian 3
nessus 7
prion 1
cve 1
ubuntucve 1
osv 1
centos 1
redhat 1
securityvulns 1
exploitdb 1
checkpoint_advisories
checkpoint_advisories
Sun Solaris DHCP Daemon Code Execution (CVE-2007-5365)
2015-10-18 00:00:00
openvas
openvas
Solaris Update for dhcp server and admin 109077-21
2009-06-03 00:00:00
Solaris Update for usr/lib/inet/in.dhcpd 138876-01
2009-06-03 00:00:00
Solaris Update for usr/lib/inet/in.dhcpd 138877-01
2009-06-03 00:00:00
seebug
seebug
Sun Solaris DHCP่ฏทๆฑ‚ๅค„็†ๆผๆดž
2008-11-12 00:00:00
Ubuntu 6.06 DHCPd bug Remote Denial of Service Exploit
2007-11-03 00:00:00
Sun Solaris DHCP่ฏทๆฑ‚ๅค„็†ๆ‹’็ปๆœๅŠกๅŠไปฃ็ ๆ‰ง่กŒๆผๆดž
2008-11-14 00:00:00
exploitpack
exploitpack
Ubuntu 6.06 - DHCPd Remote Denial of Service
2007-11-02 00:00:00
ubuntu
ubuntu
dhcp vulnerability
2007-10-22 00:00:00
dhcp vulnerability
2007-10-23 00:00:00
debian
debian
[SECURITY] [DSA 1388-3] New dhcp packages fix arbitrary code execution
2007-10-29 18:03:32
[SECURITY] [DSA 1388-1] New dhcp packages fix arbitrary code execution
2007-10-18 14:25:49
[SECURITY] [DSA 1388-3] New dhcp packages fix arbitrary code execution
2007-10-29 18:03:32
nessus
nessus
Solaris 10 (x86) : 138877-01
2018-03-12 00:00:00
Solaris 10 (sparc) : 138876-01
2018-03-12 00:00:00
Ubuntu 6.06 LTS / 6.10 / 7.04 / 7.10 : dhcp vulnerability (USN-531-1)
2007-11-10 00:00:00
prion
prion
Stack overflow
2007-10-11 10:17:00
cve
cve
CVE-2007-5365
2007-10-11 10:17:00
ubuntucve
ubuntucve
CVE-2007-5365
2007-10-11 00:00:00
osv
osv
dhcp
2007-10-29 00:00:00
centos
centos
dhcp security update
2007-10-23 23:27:07
redhat
redhat
(RHSA-2007:0970) Important: dhcp security update
2007-10-23 00:00:00
securityvulns
securityvulns
OpenBSD DHCP server buffer overflow
2007-11-05 00:00:00
exploitdb
exploitdb
Ubuntu 6.06 - DHCPd Remote Denial of Service
2007-11-02 00:00:00

7.2 High

CVSS2

Access Vector

LOCAL

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:L/AC:L/Au:N/C:C/I:C/A:C

JSON
Related for OSV:DSA-1388-3
checkpoint_advisories1openvas22seebug3exploitpack1ubuntu2debian3nessus7prion1cve1ubuntucve1osv1centos1redhat1securityvulns1exploitdb1