Lucene search
K

204 matches found

Oracle linux
Oracle linux
added 2011/04/08 12:0 a.m.46 views

dhcp security update

12:4.1.1-12.P1.4 - Better fix for CVE-2011-0997: making domain-name check more lenient 690578 12:4.1.1-12.P1.3 - dhclient: insufficient sanitization of certain DHCP response values CVE-2011-0997, 690578...

7.5CVSS1.9AI score0.84292EPSS
Exploits6
CISA
CISA
added 2011/04/08 12:0 a.m.36 views

ISC dhclient Vulnerability

The Internet Systems Consortium ISC has released an advisory to address a vulnerability in its dhclient application. This vulnerability may allow a remote attacker to execute arbitrary code on the client machine. US-CERT encourages administrators of this product to review the ISC advisory. Users ...

7.5CVSS2.5AI score0.84292EPSS
Exploits6References2
CERT
CERT
added 2011/04/05 12:0 a.m.98 views

ISC dhclient vulnerability

Overview The ISC dhclient contains a vulnerability that could allow a remote attacker to execute arbitrary code on the client machine. Description According to ISC:ISC dhclient did not strip or escape certain shell meta-characters in responses from the dhcp server like hostname before passing the...

7.5CVSS6.9AI score0.84292EPSS
Exploits6References1
FreeBSD
FreeBSD
added 2011/04/05 12:0 a.m.38 views

isc-dhcp-client -- dhclient does not strip or escape shell meta-characters

ISC reports: ISC dhclient did not strip or escape certain shell meta-characters in responses from the dhcp server like hostname before passing the responses on to dhclient-script. Depending on the script and OS, this can result in execution of exploit code on the client...

7.5CVSS1.2AI score0.84292EPSS
Exploits6
Tenable Nessus
Tenable Nessus
added 2010/11/23 12:0 a.m.37 views

Fedora 13 : dhcp-4.1.1-27.P1.fc13 (2010-17303)

Thu Nov 4 2010 Jiri Popelka - 12:4.1.1-27.P1 - Fix for CVE-2010-3611 649880 - Wed Oct 13 2010 Jiri Popelka - 12:4.1.1-26.P1 - Server was ignoring client's Solicit where client included address/prefix as a preference 634842 - Tue Sep 7 2010 Jiri Popelka - 12:4.1.1-25.P1 - Hardening...

5CVSS6.4AI score0.76412EPSS
Exploits7References3
Tenable Nessus
Tenable Nessus
added 2010/09/24 12:0 a.m.20 views

openSUSE Security Update : cifs-mount (openSUSE-SU-2010:0659-1)

A buffer overflow in the sidparse function of samba could potentially be exploited by remote attackers to execute arbitrary code CVE-2010-3069. Additionally the update also contains fixes for the following non-security issues: bnc573246 - mounted shares via mount.cifs disappear when dhclient rene...

7.5CVSS7.3AI score0.10546EPSS
Exploits0References8
Check Point Advisories
Check Point Advisories
added 2010/02/03 12:0 a.m.10 views

ISC DHCP dhclient script_write_params Stack Buffer Overflow (CVE-2009-0692)

The Dynamic Host Configuration Protocol DHCP protocol is used to centrally manage and automate the assignment of IP addresses on a network. It is an extension of the BOOTP protocol. In addition to IP address assignment, DHCP clients receive from a DHCP server information that is required to manag...

10CVSS8.3AI score0.2578EPSS
Exploits9
Tenable Nessus
Tenable Nessus
added 2009/11/11 12:0 a.m.42 views

Fedora 11 : dhcp-4.1.0p1-4.fc11 (2009-9075)

Do not require policycoreutils when installing dhcp or dhclient packages. If you have the package installed, the /sbin/restorecon program will be used by dhclient-script and the dhcpd init script. This update to the dhcp package includes fixes for CVE-2009-0692 and CVE-2009-1892. More information...

10CVSS6.8AI score0.2578EPSS
Exploits10References5
seebug.org
seebug.org
added 2009/11/10 12:0 a.m.36 views

ISC DHCP 'dhclient' 'script_write_params()' Stack Buffer Overflow Vulnerability

No description provided by source. / cve-2009-0692.c ISC DHCP dhclient 3.1.2p1 Remote Exploit Jon Oberheide [email protected] http://jon.oberheide.org Information: http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-0692 Stack-based buffer overflow in the scriptwriteparams method in...

10CVSS0.3AI score0.2578EPSS
Exploits9
OpenVAS
OpenVAS
added 2009/10/13 12:0 a.m.26 views

SLES10: Security update for dhclient

The remote host is missing updates to packages that affect the security of your system. One or more of the following packages are affected: dhcp dhcp-client dhcp-devel dhcp-relay dhcp-server More details may also be found by searching for the SuSE Enterprise Server 10 patch database linked in the...

10CVSS7.7AI score0.2578EPSS
Exploits9References1
Tenable Nessus
Tenable Nessus
added 2009/09/24 12:0 a.m.35 views

SuSE 10 Security Update : dhclient (ZYPP Patch Number 6335)

The DHCP client dhclient could be crashed by a malicious DHCP server sending a overlong subnet field. CVE-2009-0692 In some circumstances code execution might be possible, but might be caught by the buffer overflow checking in newer distributions. SLES 10 and 11. %NASLMINLEVEL 70300 C Tenable...

10CVSS8AI score0.2578EPSS
Exploits9References2
OpenVAS
OpenVAS
added 2009/07/29 12:0 a.m.34 views

SuSE Security Advisory SUSE-SA:2009:037 (dhcp-client)

The remote host is missing updates announced in advisory SUSE-SA:2009:037. OpenVAS Vulnerability Test $Id: susesa2009037.nasl 6668 2017-07-11 13:34:29Z cfischer $ Description: Auto-generated from advisory SUSE-SA:2009:037 dhcp-client Authors: Thomas Reinke Copyright: Copyright c 2009 E-Soft Inc...

10CVSS0.8AI score0.70202EPSS
Exploits23
0day.today
0day.today
added 2009/07/27 12:0 a.m.54 views

ISC DHCP dhclient < 3.1.2p1 Remote Buffer Overflow PoC

Exploit for linux platform in category dos / poc ====================================================== ISC DHCP dhclient 3.1.2p1 Remote Buffer Overflow PoC ====================================================== / cve-2009-0692.c ISC DHCP dhclient 3.1.2p1 Remote Exploit Information:...

7AI score0.2578EPSS
Exploits9
Exploit DB
Exploit DB
added 2009/07/27 12:0 a.m.52 views

ISC DHCP dhclient &lt; 3.1.2p1 - Remote Buffer Overflow (PoC)

/ cve-2009-0692.c ISC DHCP dhclient http://jon.oberheide.org Information: http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-0692 Stack-based buffer overflow in the scriptwriteparams method in client/dhclient.c in ISC DHCP dhclient 4.1 before 4.1.0p1, 4.0 before 4.0.1p1, 3.1 before 3.1.2p1,...

10CVSS7AI score0.2578EPSS
Exploits9
Tenable Nessus
Tenable Nessus
added 2009/07/21 12:0 a.m.45 views

openSUSE Security Update : dhcp (dhcp-1067)

The DHCP client dhclient could be crashed by a malicious DHCP server sending a overlong subnet field. CVE-2009-0692 In some circumstances code execution might be possible, but might is likely caught by the buffer overflow checking of the FORTIFYSOURCE extension. %NASLMINLEVEL 70300 C Tenable...

10CVSS8AI score0.2578EPSS
Exploits9References2
Check Point Advisories
Check Point Advisories
added 2009/07/17 12:0 a.m.4 views

Preemptive Protection against DHCP Stack Overflow in 'dhclient' script_write_params()

The ISC DHCP client code dhclient application contains a stack buffer overflow, which may allow a remote, unauthenticated attacker to execute arbitrary code. ISC DHCP is a reference implementation of the DHCP protocol, including a DHCP server, client, and relay agent. dhclient fails to check the...

10CVSS8.3AI score0.2578EPSS
Exploits9
CheckPoint Security
CheckPoint Security
added 2009/07/14 9:0 p.m.22 views

Check Point response to ISC DHCP dhclient buffer overflow vulnerability (CVE-2009-0692)

...

10CVSS2.2AI score0.2578EPSS
Exploits9Affected Software2
Cvelist
Cvelist
added 2009/07/14 8:16 p.m.26 views

CVE-2009-0692

Stack-based buffer overflow in the scriptwriteparams method in client/dhclient.c in ISC DHCP dhclient 4.1 before 4.1.0p1, 4.0 before 4.0.1p1, 3.1 before 3.1.2p1, 3.0, and 2.0 allows remote DHCP servers to execute arbitrary code via a crafted subnet-mask option...

7.9AI score0.2578EPSS
Exploits9References36
RedHat Linux
RedHat Linux
added 2009/07/14 7:32 p.m.6 views

dhclient: stack overflow leads to arbitrary code execution as root

Stack-based buffer overflow in the scriptwriteparams method in client/dhclient.c in ISC DHCP dhclient 4.1 before 4.1.0p1, 4.0 before 4.0.1p1, 3.1 before 3.1.2p1, 3.0, and 2.0 allows remote DHCP servers to execute arbitrary code via a crafted subnet-mask option...

10CVSS7.8AI score0.2578EPSS
Exploits9References4
RedHat Linux
RedHat Linux
added 2009/07/14 7:18 p.m.5 views

dhclient: stack overflow leads to arbitrary code execution as root

Stack-based buffer overflow in the scriptwriteparams method in client/dhclient.c in ISC DHCP dhclient 4.1 before 4.1.0p1, 4.0 before 4.0.1p1, 3.1 before 3.1.2p1, 3.0, and 2.0 allows remote DHCP servers to execute arbitrary code via a crafted subnet-mask option...

10CVSS7.8AI score0.2578EPSS
Exploits9References4
Rows per page
Query Builder