Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
redhatRedHatRHSA-2007:0970
HistoryOct 23, 2007 - 12:00 a.m.

(RHSA-2007:0970) Important: dhcp security update

2007-10-2300:00:00
access.redhat.com
11

10 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

0.954 High

EPSS

Percentile

99.2%

JSON

The dhcp package provides the ISC Dynamic Host Configuration Protocol
(DHCP) server and relay agent, dhcpd. DHCP is a protocol that allows
devices to get their own network configuration information from a server.

A bug was found in the way dhcpd validates certain DHCP protocol options.
A malicious DHCP client could send a carefully crafted DHCP request and cause
dhcpd to crash or possibly execute arbitrary code. (CVE-2007-5365)

All users of dhcp should upgrade to this updated package, which contains a
backported patch that resolves this issue.

OSVersionArchitecturePackageVersionFilename
RedHatanyi386dhcp< 2.0pl5-11dhcp-2.0pl5-11.i386.rpm
RedHatanyia64dhcp< 2.0pl5-11dhcp-2.0pl5-11.ia64.rpm

Related

securityvulns 4
centos 1
nessus 11
checkpoint_advisories 3
openvas 21
seebug 4
exploitpack 1
ubuntu 3
prion 2
debian 3
cve 2
osv 2
ubuntucve 2
canvas 1
exploitdb 1
gentoo 1
vmware 1
securityvulns
securityvulns
OpenBSD DHCP server buffer overflow
2007-11-05 00:00:00
CORE-2007-0928: Stack-based buffer overflow vulnerability in OpenBSD’s DHCP server
2007-10-12 00:00:00
VMWare software multiple security vulnerabilities
2007-09-21 00:00:00
centos
centos
dhcp security update
2007-10-23 23:27:07
nessus
nessus
RHEL 2.1 : dhcp (RHSA-2007:0970)
2007-10-25 00:00:00
Solaris 10 (x86) : 138877-01
2018-03-12 00:00:00
Solaris 10 (sparc) : 138876-01
2018-03-12 00:00:00
checkpoint_advisories
checkpoint_advisories
Sun Solaris DHCP Daemon Code Execution (CVE-2007-5365)
2015-10-18 00:00:00
IPS-1 Protection for VMWare DHCP Vulnerability (DHCP Version 7)
2007-09-27 00:00:00
Preemptive Protection against EMC VMware Workstation DHCP Service Integer Underflow Vulnerability
2007-10-01 00:00:00
openvas
openvas
Solaris Update for dhcp server and admin 109077-21
2009-06-03 00:00:00
Solaris Update for usr/lib/inet/in.dhcpd 138876-01
2009-06-03 00:00:00
Solaris Update for usr/lib/inet/in.dhcpd 138877-01
2009-06-03 00:00:00
seebug
seebug
Sun Solaris DHCP请求处理漏洞
2008-11-12 00:00:00
Ubuntu 6.06 DHCPd bug Remote Denial of Service Exploit
2007-11-03 00:00:00
Sun Solaris DHCP请求处理拒绝服务及代码执行漏洞
2008-11-14 00:00:00
exploitpack
exploitpack
Ubuntu 6.06 - DHCPd Remote Denial of Service
2007-11-02 00:00:00
ubuntu
ubuntu
dhcp vulnerability
2007-10-22 00:00:00
dhcp vulnerability
2007-10-23 00:00:00
VMWare vulnerabilities
2007-11-15 00:00:00
prion
prion
Stack overflow
2007-10-11 10:17:00
Integer overflow
2007-09-21 19:17:00
debian
debian
[SECURITY] [DSA 1388-3] New dhcp packages fix arbitrary code execution
2007-10-29 18:03:32
[SECURITY] [DSA 1388-3] New dhcp packages fix arbitrary code execution
2007-10-29 18:03:32
[SECURITY] [DSA 1388-1] New dhcp packages fix arbitrary code execution
2007-10-18 14:25:49
cve
cve
CVE-2007-5365
2007-10-11 10:17:00
CVE-2007-0063
2007-09-21 19:17:00
osv
osv
dhcp
2007-10-29 00:00:00
dhcp - buffer overflow
2007-10-29 00:00:00
ubuntucve
ubuntucve
CVE-2007-5365
2007-10-11 00:00:00
CVE-2007-0063
2007-09-21 00:00:00
canvas
canvas
Immunity Canvas: VMWARE_DHCPD
2007-09-21 19:17:00
exploitdb
exploitdb
Ubuntu 6.06 - DHCPd Remote Denial of Service
2007-11-02 00:00:00
gentoo
gentoo
VMware Workstation and Player: Multiple vulnerabilities
2007-11-18 00:00:00
vmware
vmware
Updated versions of all supported hosted products and all ESX 2x products and patches for ESX 30x address critical security updates. Service Console security updates for samba, bind, krb5, vixie-cron, shadow-utils, openldap, pam, gcc, and gdb packages.
2007-09-18 00:00:00

10 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

0.954 High

EPSS

Percentile

99.2%

JSON
Related for RHSA-2007:0970
securityvulns4centos1nessus11checkpoint_advisories3openvas21seebug4exploitpack1ubuntu3prion2debian3cve2osv2ubuntucve2canvas1exploitdb1gentoo1vmware1