Lucene search

K
ubuntuUbuntuUSN-1108-1
HistoryApr 11, 2011 - 12:00 a.m.

DHCP vulnerability

2011-04-1100:00:00
ubuntu.com
28

7 High

AI Score

Confidence

Low

7.5 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

0.971 High

EPSS

Percentile

99.8%

Releases

  • Ubuntu 10.10
  • Ubuntu 10.04
  • Ubuntu 9.10
  • Ubuntu 8.04
  • Ubuntu 6.06

Packages

  • dhcp3 - DHCP Client

Details

Sebastian Krahmer discovered that the dhclient utility incorrectly filtered
crafted responses. An attacker could use this flaw with a malicious DHCP
server to execute arbitrary code, resulting in root privilege escalation.

OSVersionArchitecturePackageVersionFilename
Ubuntu9.10noarchdhcp3-client< 3.1.2-1ubuntu7.2UNKNOWN
Ubuntu9.10noarchdhcp3-client-udeb< 3.1.2-1ubuntu7.2UNKNOWN
Ubuntu9.10noarchdhcp3-common< 3.1.2-1ubuntu7.2UNKNOWN
Ubuntu9.10noarchdhcp3-dev< 3.1.2-1ubuntu7.2UNKNOWN
Ubuntu9.10noarchdhcp3-relay< 3.1.2-1ubuntu7.2UNKNOWN
Ubuntu9.10noarchdhcp3-server< 3.1.2-1ubuntu7.2UNKNOWN
Ubuntu9.10noarchdhcp3-server-ldap< 3.1.2-1ubuntu7.2UNKNOWN
Ubuntu8.04noarchdhcp3-client< 3.0.6.dfsg-1ubuntu9.2UNKNOWN
Ubuntu8.04noarchdhcp3-client-udeb< 3.0.6.dfsg-1ubuntu9.2UNKNOWN
Ubuntu8.04noarchdhcp3-common< 3.0.6.dfsg-1ubuntu9.2UNKNOWN
Rows per page:
1-10 of 331

7 High

AI Score

Confidence

Low

7.5 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

0.971 High

EPSS

Percentile

99.8%