Oval Definition:oval:org.mitre.oval:def:5817
Revision Date:2009-02-16Version:17
Title:Security Vulnerabilities in DHCP Handling of DHCP Requests May Allow Remote Users to Execute Arbitrary Code or Cause a Denial of the DHCP Service
Description:Stack-based buffer overflow in the cons_options function in options.c in dhcpd in OpenBSD 4.0 through 4.2, and some other dhcpd implementations based on ISC dhcp-2, allows remote attackers to execute arbitrary code or cause a denial of service (daemon crash) via a DHCP request specifying a maximum message size smaller than the minimum IP MTU.
Family:unixClass:vulnerability
Status:ACCEPTEDReference(s):CVE-2007-5365
Platform(s):Sun Solaris 10
Sun Solaris 8
Sun Solaris 9
Product(s):
Definition Synopsis
  • Solaris 8 (SPARC) meets Sun Alert 243806
  • Solaris 8 (SPARC) is installed
  • AND NOT Patch 109077-21 or later installed
  • OR Solaris 9 (SPARC) meets Sun Alert 243806
  • Solaris 9 (SPARC) is installed
  • AND NOT Patch 112837-16 or later installed
  • OR Solaris 10 (SPARC) meets Sun Alert 243806
  • Solaris 10 (SPARC) is installed
  • AND NOT Patch 138876-01 or later installed
  • OR Solaris 8 (x86) meets Sun Alert 243806
  • Solaris 8 (x86) is installed
  • AND NOT Patch 109078-21 or later installed
  • OR Solaris 9 (x86) meets Sun Alert 243806
  • Solaris 9 (x86) is installed
  • AND NOT Patch 114265-15 or later installed
  • OR Solaris 10 (x86) meets Sun Alert 243806
  • Solaris 10 (x86) is installed
  • AND NOT Patch 138877-01 or later installed
  • BACK