6.8 Medium
CVSS2
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:M/Au:N/C:P/I:P/A:P
0.012 Low
EPSS
Percentile
85.4%
The get_option function in dhcp.c in dhcpcd before 6.2.0, as used in dhcpcd
5.x in Android before 5.1 and other products, does not validate the
relationship between length fields and the amount of data, which allows
remote DHCP servers to execute arbitrary code or cause a denial of service
(memory corruption) via a large length value of an option in a DHCPACK
message.
www.zerodayinitiative.com/advisories/ZDI-15-093/
android.googlesource.com/platform/external/dhcpcd/+/73c09dd8067250734511d955d8f792b41c7213f0
launchpad.net/bugs/cve/CVE-2014-7912
nvd.nist.gov/vuln/detail/CVE-2014-7912
security-tracker.debian.org/tracker/CVE-2014-7912
www.cve.org/CVERecord?id=CVE-2014-7912