Oval Definition:	oval:org.mitre.oval:tst:38535
Comment: dhcp is earlier than 7:3.0.1-10.2_EL3 Type: rpminfo_test Namespace: linux Check_Existence: at_least_one_exists Check: at least one State Operator: AND References Object: oval:org.mitre.oval:obj:15132 Object: oval:org.mitre.oval:obj:3459 State: oval:org.mitre.oval:ste:11239 Referencing Definitions Definition ID Class Title Last Modified oval:org.mitre.oval:def:10758 V Stack-based buffer overflow in the script_write_params method in client/dhclient.c in ISC DHCP dhclient 4.1 before 4.1.0p1, 4.0 before 4.0.1p1, 3.1 before 3.1.2p1, 3.0, and 2.0 allows remote DHCP servers to execute arbitrary code via a crafted subnet-mask option. 2013-04-29 oval:org.mitre.oval:def:11597 V The configtest function in the Red Hat dhcpd init script for DHCP 3.0.1 in Red Hat Enterprise Linux (RHEL) 3 allows local users to overwrite arbitrary files via a symlink attack on an unspecified temporary file, related to the "dhcpd -t" command. 2013-04-29
BACK