Invalid usage of DHCP client allows command execution by spoofing DHCP server reply.
vulners.com/securityvulns/securityvulns:doc:2921