Lucene search

VMwareVMSA-2009-0014.3

HistoryOct 16, 2009 - 12:00 a.m.

VMware ESX patches for DHCP, Service Console kernel, and JRE resolve multiple security issues

2009-10-1600:00:00

www.vmware.com

7.8 High

CVSS3

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

10 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

0.971 High

EPSS

Percentile

99.8%

JSON

a. Service Console update for DHCP and third party library update for DHCP client. DHCP is an Internet-standard protocol by which a computer can be connected to a local network, ask to be given configuration information, and receive from a server enough information to configure itself as a member of that network.

A stack-based buffer overflow in the script_write_params method in ISC DHCP dhclient allows remote DHCP servers to execute arbitrary code via a crafted subnet-mask option.

The Common Vulnerabilities and Exposures Project (cve.mitre.org) has assigned the name CVE-2009-0692 to this issue.

An insecure temporary file use flaw was discovered in the DHCP daemon’s init script (“/etc/init.d/dhcpd”). A local attacker could use this flaw to overwrite an arbitrary file with the output of the “dhcpd -t” command via a symbolic link attack, if a system administrator executed the DHCP init script with the “configtest”, “restart”, or “reload” option.

The Common Vulnerabilities and Exposures Project (cve.mitre.org) has assigned the name CVE-2009-1893 to this issue.

The following table lists what action remediates the vulnerability in the Service Console (column 4) if a solution is available.

CPENameOperatorVersion
esxltESX350-200910406-SG
esxltESX303-200910402-SG
esxiltESXi400-200911201-UG
esxltESX400-200912404-SG
esxltESX350-200910401-SG
vcenterltsee VMSA-2009-0016
esxltsee VMSA-2009-0016
esxltESX350-200910403-SG

Name	Operator	Version
esx	lt	ESX350-200910406-SG
esx	lt	ESX303-200910402-SG
esxi	lt	ESXi400-200911201-UG
esx	lt	ESX400-200912404-SG
esx	lt	ESX350-200910401-SG
vcenter	lt	see VMSA-2009-0016
esx	lt	see VMSA-2009-0016
esx	lt	ESX350-200910403-SG

References

cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-6063

cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-0598

cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-2086

cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-2136

cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-2812

cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-3275

cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-3525

cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-4210

cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-5339

cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-5340

cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-5341

cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-5342

cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-5343

cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-5344

cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-5345

cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-5346

cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-5347

cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-5348

cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-5349

cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-5350

cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-5351

cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-5352

cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-5353

cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-5354

cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-5355

cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-5356

cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-5357

cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-5358

cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-5359

cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-5360

cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-0692

cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-1093

cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-1094

cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-1095

cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-1096

cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-1097

cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-1098

cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-1099

cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-1100

cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-1101

cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-1102

cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-1103

cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-1104

cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-1105

cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-1106

cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-1107

cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-1893

7.8 High

CVSS3

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

10 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

0.971 High

EPSS

Percentile

99.8%

JSON

Related for VMSA-2009-0014.3