Vulnerability Name:

CVE-2007-5365 (CCN-37045)

Assigned:2007-10-09
Published:2007-10-09
Updated:2018-10-15
Summary:Stack-based buffer overflow in the cons_options function in options.c in dhcpd in OpenBSD 4.0 through 4.2, and some other dhcpd implementations based on ISC dhcp-2, allows remote attackers to execute arbitrary code or cause a denial of service (daemon crash) via a DHCP request specifying a maximum message size smaller than the minimum IP MTU.
CVSS v3 Severity:7.3 High (CCN CVSS v3.1 Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L)
Exploitability Metrics:Attack Vector (AV): Network
Attack Complexity (AC): Low
Privileges Required (PR): None
User Interaction (UI): None
Scope:Scope (S): Unchanged
Impact Metrics:Confidentiality (C): Low
Integrity (I): Low
Availibility (A): Low
CVSS v2 Severity:7.2 High (CVSS v2 Vector: AV:L/AC:L/Au:N/C:C/I:C/A:C)
5.6 Medium (Temporal CVSS v2 Vector: AV:L/AC:L/Au:N/C:C/I:C/A:C/E:POC/RL:OF/RC:C)
Exploitability Metrics:Access Vector (AV): Local
Access Complexity (AC): Low
Authentication (Au): None
Impact Metrics:Confidentiality (C): Complete
Integrity (I): Complete
Availibility (A): Complete
7.5 High (CCN CVSS v2 Vector: AV:N/AC:L/Au:N/C:P/I:P/A:P)
5.9 Medium (CCN Temporal CVSS v2 Vector: AV:N/AC:L/Au:N/C:P/I:P/A:P/E:POC/RL:OF/RC:C)
Exploitability Metrics:Access Vector (AV): Network
Access Complexity (AC): Low
Athentication (Au): None
Impact Metrics:Confidentiality (C): Partial
Integrity (I): Partial
Availibility (A): Partial
Vulnerability Type:CWE-119
Vulnerability Consequences:Gain Access
References:Source: CCN
Type: Full-Disclosure Mailing List, Fri Nov 02 2007 - 16:06:07 CDT
DoS Exploit for DHCPd bug (Bugtraq ID 25984 ; CVE-2007-5365)

Source: CONFIRM
Type: UNKNOWN
http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=446354

Source: MITRE
Type: CNA
CVE-2007-5365

Source: CCN
Type: RHSA-2007-0970
Important: dhcp security update

Source: CCN
Type: SA27160
OpenBSD dhcpd Buffer Overflow Vulnerability

Source: SECUNIA
Type: Vendor Advisory
27160

Source: SECUNIA
Type: Vendor Advisory
27273

Source: SECUNIA
Type: Vendor Advisory
27338

Source: SECUNIA
Type: Vendor Advisory
27350

Source: CCN
Type: SA32668
Sun Solaris DHCP Request Handling Vulnerabilities

Source: SECUNIA
Type: Vendor Advisory
32668

Source: CCN
Type: SECTRACK ID: 1018794
OpenBSD dhcpcd Buffer Overflow Lets Remote Users Execute Arbitrary Code

Source: CCN
Type: SECTRACK ID: 1021157
Solaris DHCP Daemon Bug Lets Remote Users Deny Service

Source: SECTRACK
Type: UNKNOWN
1021157

Source: CONFIRM
Type: UNKNOWN
http://sunsolve.sun.com/search/document.do?assetkey=1-21-109077-21-1

Source: SUNALERT
Type: UNKNOWN
243806

Source: CCN
Type: Sun Alert ID: 243806
Security Vulnerabilities in DHCP Handling of DHCP Requests May Allow Remote Users to Execute Arbitrary Code or Cause a Denial of the DHCP Service

Source: CCN
Type: ASA-2007-462
dhcp security update (RHSA-2007-0970)

Source: CCN
Type: ASA-2008-443
Security Vulnerabilities in DHCP Handling of DHCP Requests May Allow Remote Users to Execute Arbitrary Code or Cause a Denial of the DHCP Service (Sun 243806)

Source: CCN
Type: CORE-2007-0928
Stack-based buffer overflow vulnerability in OpenBSD's DHCP server

Source: MISC
Type: UNKNOWN
http://www.coresecurity.com/index.php5?module=ContentMod&action=item&id=1962

Source: DEBIAN
Type: UNKNOWN
DSA-1388

Source: DEBIAN
Type: DSA-1388
dhcp -- buffer overflow

Source: CONFIRM
Type: Patch
http://www.openbsd.org/cgi-bin/cvsweb/src/usr.sbin/dhcpd/options.c

Source: OPENBSD
Type: Patch
[4.0] 20071008 016: SECURITY FIX: October 8, 2007

Source: CCN
Type: OpenBSD 4.0 errata
016: SECURITY FIX: October 8, 2007

Source: OPENBSD
Type: Patch
[4.1] 20071008 010: SECURITY FIX: October 8, 2007

Source: CCN
Type: OpenBSD 4.1 errata
010: SECURITY FIX: October 8, 2007

Source: OPENBSD
Type: Patch
[4.2] 20071008 001: SECURITY FIX: October 8, 2007

Source: CCN
Type: OpenBSD 4.2 errata
001: SECURITY FIX: October 8, 2007

Source: REDHAT
Type: UNKNOWN
RHSA-2007:0970

Source: BUGTRAQ
Type: UNKNOWN
20071011 CORE-2007-0928: Stack-based buffer overflow vulnerability in OpenBSDâ??s DHCP server

Source: BUGTRAQ
Type: UNKNOWN
20071102 DoS Exploit for DHCPd bug (Bugtraq ID 25984 ; CVE-2007-5365)

Source: BID
Type: Patch
25984

Source: CCN
Type: BID-25984
ISC DHCPD Server Remote Stack Corruption Vulnerability

Source: BID
Type: UNKNOWN
32213

Source: CCN
Type: BID-32213
Sun Solaris DHCP Denial of Service And Remote Code Execution Vulnerabilities

Source: SECTRACK
Type: UNKNOWN
1018794

Source: CCN
Type: USN-531-1
dhcp vulnerability

Source: UBUNTU
Type: UNKNOWN
USN-531-1

Source: CCN
Type: USN-531-2
dhcp vulnerability

Source: UBUNTU
Type: UNKNOWN
USN-531-2

Source: VUPEN
Type: Vendor Advisory
ADV-2008-3088

Source: XF
Type: UNKNOWN
openbsd-dhcp-bo(37045)

Source: XF
Type: UNKNOWN
openbsd-dhcp-bo(37045)

Source: OVAL
Type: UNKNOWN
oval:org.mitre.oval:def:5817

Source: EXPLOIT-DB
Type: UNKNOWN
4601

Vulnerable Configuration:Configuration 1:
  • cpe:/o:debian:debian_linux:3.1:*:*:*:*:*:*:*
  • OR cpe:/o:debian:debian_linux:4.0:*:*:*:*:*:*:*
  • OR cpe:/o:openbsd:openbsd:4.0:*:*:*:*:*:*:*
  • OR cpe:/o:openbsd:openbsd:4.1:*:*:*:*:*:*:*
  • OR cpe:/o:openbsd:openbsd:4.2:*:*:*:*:*:*:*
  • OR cpe:/o:redhat:enterprise_linux:2.1:*:as:*:*:*:*:*
  • OR cpe:/o:redhat:enterprise_linux:2.1:*:es:*:*:*:*:*
  • OR cpe:/o:redhat:linux_advanced_workstation:2.1:*:itanium:*:*:*:*:*
  • OR cpe:/o:sun:opensolaris:snv_01:*:sparc:*:*:*:*:*
  • OR cpe:/o:sun:opensolaris:snv_01:*:x86:*:*:*:*:*
  • OR cpe:/o:sun:opensolaris:snv_02:*:sparc:*:*:*:*:*
  • OR cpe:/o:sun:opensolaris:snv_02:*:x86:*:*:*:*:*
  • OR cpe:/o:sun:opensolaris:snv_03:*:sparc:*:*:*:*:*
  • OR cpe:/o:sun:opensolaris:snv_03:*:x86:*:*:*:*:*
  • OR cpe:/o:sun:opensolaris:snv_04:*:sparc:*:*:*:*:*
  • OR cpe:/o:sun:opensolaris:snv_04:*:x86:*:*:*:*:*
  • OR cpe:/o:sun:opensolaris:snv_05:*:sparc:*:*:*:*:*
  • OR cpe:/o:sun:opensolaris:snv_05:*:x86:*:*:*:*:*
  • OR cpe:/o:sun:opensolaris:snv_06:*:sparc:*:*:*:*:*
  • OR cpe:/o:sun:opensolaris:snv_06:*:x86:*:*:*:*:*
  • OR cpe:/o:sun:opensolaris:snv_07:*:sparc:*:*:*:*:*
  • OR cpe:/o:sun:opensolaris:snv_07:*:x86:*:*:*:*:*
  • OR cpe:/o:sun:opensolaris:snv_08:*:sparc:*:*:*:*:*
  • OR cpe:/o:sun:opensolaris:snv_08:*:x86:*:*:*:*:*
  • OR cpe:/o:sun:opensolaris:snv_09:*:sparc:*:*:*:*:*
  • OR cpe:/o:sun:opensolaris:snv_09:*:x86:*:*:*:*:*
  • OR cpe:/o:sun:opensolaris:snv_10:*:sparc:*:*:*:*:*
  • OR cpe:/o:sun:opensolaris:snv_10:*:x86:*:*:*:*:*
  • OR cpe:/o:sun:opensolaris:snv_11:*:sparc:*:*:*:*:*
  • OR cpe:/o:sun:opensolaris:snv_11:*:x86:*:*:*:*:*
  • OR cpe:/o:sun:opensolaris:snv_12:*:sparc:*:*:*:*:*
  • OR cpe:/o:sun:opensolaris:snv_12:*:x86:*:*:*:*:*
  • OR cpe:/o:sun:opensolaris:snv_13:*:sparc:*:*:*:*:*
  • OR cpe:/o:sun:opensolaris:snv_13:*:x86:*:*:*:*:*
  • OR cpe:/o:sun:opensolaris:snv_14:*:sparc:*:*:*:*:*
  • OR cpe:/o:sun:opensolaris:snv_14:*:x86:*:*:*:*:*
  • OR cpe:/o:sun:opensolaris:snv_15:*:sparc:*:*:*:*:*
  • OR cpe:/o:sun:opensolaris:snv_15:*:x86:*:*:*:*:*
  • OR cpe:/o:sun:opensolaris:snv_16:*:sparc:*:*:*:*:*
  • OR cpe:/o:sun:opensolaris:snv_16:*:x86:*:*:*:*:*
  • OR cpe:/o:sun:opensolaris:snv_17:*:sparc:*:*:*:*:*
  • OR cpe:/o:sun:opensolaris:snv_17:*:x86:*:*:*:*:*
  • OR cpe:/o:sun:opensolaris:snv_18:*:sparc:*:*:*:*:*
  • OR cpe:/o:sun:opensolaris:snv_18:*:x86:*:*:*:*:*
  • OR cpe:/o:sun:opensolaris:snv_19:*:sparc:*:*:*:*:*
  • OR cpe:/o:sun:opensolaris:snv_19:*:x86:*:*:*:*:*
  • OR cpe:/o:sun:opensolaris:snv_20:*:sparc:*:*:*:*:*
  • OR cpe:/o:sun:opensolaris:snv_20:*:x86:*:*:*:*:*
  • OR cpe:/o:sun:opensolaris:snv_21:*:sparc:*:*:*:*:*
  • OR cpe:/o:sun:opensolaris:snv_21:*:x86:*:*:*:*:*
  • OR cpe:/o:sun:opensolaris:snv_22:*:sparc:*:*:*:*:*
  • OR cpe:/o:sun:opensolaris:snv_22:*:x86:*:*:*:*:*
  • OR cpe:/o:sun:opensolaris:snv_23:*:sparc:*:*:*:*:*
  • OR cpe:/o:sun:opensolaris:snv_23:*:x86:*:*:*:*:*
  • OR cpe:/o:sun:opensolaris:snv_24:*:sparc:*:*:*:*:*
  • OR cpe:/o:sun:opensolaris:snv_24:*:x86:*:*:*:*:*
  • OR cpe:/o:sun:opensolaris:snv_25:*:sparc:*:*:*:*:*
  • OR cpe:/o:sun:opensolaris:snv_25:*:x86:*:*:*:*:*
  • OR cpe:/o:sun:opensolaris:snv_26:*:sparc:*:*:*:*:*
  • OR cpe:/o:sun:opensolaris:snv_26:*:x86:*:*:*:*:*
  • OR cpe:/o:sun:opensolaris:snv_27:*:sparc:*:*:*:*:*
  • OR cpe:/o:sun:opensolaris:snv_27:*:x86:*:*:*:*:*
  • OR cpe:/o:sun:opensolaris:snv_28:*:sparc:*:*:*:*:*
  • OR cpe:/o:sun:opensolaris:snv_28:*:x86:*:*:*:*:*
  • OR cpe:/o:sun:opensolaris:snv_29:*:sparc:*:*:*:*:*
  • OR cpe:/o:sun:opensolaris:snv_29:*:x86:*:*:*:*:*
  • OR cpe:/o:sun:opensolaris:snv_30:*:sparc:*:*:*:*:*
  • OR cpe:/o:sun:opensolaris:snv_30:*:x86:*:*:*:*:*
  • OR cpe:/o:sun:opensolaris:snv_31:*:sparc:*:*:*:*:*
  • OR cpe:/o:sun:opensolaris:snv_31:*:x86:*:*:*:*:*
  • OR cpe:/o:sun:opensolaris:snv_32:*:sparc:*:*:*:*:*
  • OR cpe:/o:sun:opensolaris:snv_32:*:x86:*:*:*:*:*
  • OR cpe:/o:sun:opensolaris:snv_33:*:sparc:*:*:*:*:*
  • OR cpe:/o:sun:opensolaris:snv_33:*:x86:*:*:*:*:*
  • OR cpe:/o:sun:opensolaris:snv_34:*:sparc:*:*:*:*:*
  • OR cpe:/o:sun:opensolaris:snv_34:*:x86:*:*:*:*:*
  • OR cpe:/o:sun:opensolaris:snv_35:*:sparc:*:*:*:*:*
  • OR cpe:/o:sun:opensolaris:snv_35:*:x86:*:*:*:*:*
  • OR cpe:/o:sun:opensolaris:snv_36:*:sparc:*:*:*:*:*
  • OR cpe:/o:sun:opensolaris:snv_36:*:x86:*:*:*:*:*
  • OR cpe:/o:sun:opensolaris:snv_37:*:sparc:*:*:*:*:*
  • OR cpe:/o:sun:opensolaris:snv_37:*:x86:*:*:*:*:*
  • OR cpe:/o:sun:opensolaris:snv_38:*:sparc:*:*:*:*:*
  • OR cpe:/o:sun:opensolaris:snv_38:*:x86:*:*:*:*:*
  • OR cpe:/o:sun:opensolaris:snv_39:*:sparc:*:*:*:*:*
  • OR cpe:/o:sun:opensolaris:snv_39:*:x86:*:*:*:*:*
  • OR cpe:/o:sun:opensolaris:snv_40:*:sparc:*:*:*:*:*
  • OR cpe:/o:sun:opensolaris:snv_40:*:x86:*:*:*:*:*
  • OR cpe:/o:sun:opensolaris:snv_41:*:sparc:*:*:*:*:*
  • OR cpe:/o:sun:opensolaris:snv_41:*:x86:*:*:*:*:*
  • OR cpe:/o:sun:opensolaris:snv_42:*:sparc:*:*:*:*:*
  • OR cpe:/o:sun:opensolaris:snv_42:*:x86:*:*:*:*:*
  • OR cpe:/o:sun:opensolaris:snv_43:*:sparc:*:*:*:*:*
  • OR cpe:/o:sun:opensolaris:snv_43:*:x86:*:*:*:*:*
  • OR cpe:/o:sun:opensolaris:snv_44:*:sparc:*:*:*:*:*
  • OR cpe:/o:sun:opensolaris:snv_44:*:x86:*:*:*:*:*
  • OR cpe:/o:sun:opensolaris:snv_45:*:sparc:*:*:*:*:*
  • OR cpe:/o:sun:opensolaris:snv_45:*:x86:*:*:*:*:*
  • OR cpe:/o:sun:opensolaris:snv_46:*:sparc:*:*:*:*:*
  • OR cpe:/o:sun:opensolaris:snv_46:*:x86:*:*:*:*:*
  • OR cpe:/o:sun:opensolaris:snv_47:*:sparc:*:*:*:*:*
  • OR cpe:/o:sun:opensolaris:snv_47:*:x86:*:*:*:*:*
  • OR cpe:/o:sun:opensolaris:snv_48:*:sparc:*:*:*:*:*
  • OR cpe:/o:sun:opensolaris:snv_48:*:x86:*:*:*:*:*
  • OR cpe:/o:sun:opensolaris:snv_49:*:sparc:*:*:*:*:*
  • OR cpe:/o:sun:opensolaris:snv_49:*:x86:*:*:*:*:*
  • OR cpe:/o:sun:opensolaris:snv_50:*:sparc:*:*:*:*:*
  • OR cpe:/o:sun:opensolaris:snv_50:*:x86:*:*:*:*:*
  • OR cpe:/o:sun:opensolaris:snv_51:*:sparc:*:*:*:*:*
  • OR cpe:/o:sun:opensolaris:snv_51:*:x86:*:*:*:*:*
  • OR cpe:/o:sun:opensolaris:snv_52:*:sparc:*:*:*:*:*
  • OR cpe:/o:sun:opensolaris:snv_52:*:x86:*:*:*:*:*
  • OR cpe:/o:sun:opensolaris:snv_53:*:sparc:*:*:*:*:*
  • OR cpe:/o:sun:opensolaris:snv_53:*:x86:*:*:*:*:*
  • OR cpe:/o:sun:opensolaris:snv_54:*:sparc:*:*:*:*:*
  • OR cpe:/o:sun:opensolaris:snv_54:*:x86:*:*:*:*:*
  • OR cpe:/o:sun:opensolaris:snv_55:*:sparc:*:*:*:*:*
  • OR cpe:/o:sun:opensolaris:snv_55:*:x86:*:*:*:*:*
  • OR cpe:/o:sun:opensolaris:snv_56:*:sparc:*:*:*:*:*
  • OR cpe:/o:sun:opensolaris:snv_56:*:x86:*:*:*:*:*
  • OR cpe:/o:sun:opensolaris:snv_57:*:sparc:*:*:*:*:*
  • OR cpe:/o:sun:opensolaris:snv_57:*:x86:*:*:*:*:*
  • OR cpe:/o:sun:opensolaris:snv_58:*:sparc:*:*:*:*:*
  • OR cpe:/o:sun:opensolaris:snv_58:*:x86:*:*:*:*:*
  • OR cpe:/o:sun:opensolaris:snv_59:*:sparc:*:*:*:*:*
  • OR cpe:/o:sun:opensolaris:snv_59:*:x86:*:*:*:*:*
  • OR cpe:/o:sun:opensolaris:snv_60:*:sparc:*:*:*:*:*
  • OR cpe:/o:sun:opensolaris:snv_60:*:x86:*:*:*:*:*
  • OR cpe:/o:sun:opensolaris:snv_61:*:sparc:*:*:*:*:*
  • OR cpe:/o:sun:opensolaris:snv_61:*:x86:*:*:*:*:*
  • OR cpe:/o:sun:opensolaris:snv_62:*:sparc:*:*:*:*:*
  • OR cpe:/o:sun:opensolaris:snv_62:*:x86:*:*:*:*:*
  • OR cpe:/o:sun:opensolaris:snv_63:*:sparc:*:*:*:*:*
  • OR cpe:/o:sun:opensolaris:snv_63:*:x86:*:*:*:*:*
  • OR cpe:/o:sun:opensolaris:snv_64:*:sparc:*:*:*:*:*
  • OR cpe:/o:sun:opensolaris:snv_64:*:x86:*:*:*:*:*
  • OR cpe:/o:sun:opensolaris:snv_65:*:sparc:*:*:*:*:*
  • OR cpe:/o:sun:opensolaris:snv_65:*:x86:*:*:*:*:*
  • OR cpe:/o:sun:opensolaris:snv_66:*:sparc:*:*:*:*:*
  • OR cpe:/o:sun:opensolaris:snv_66:*:x86:*:*:*:*:*
  • OR cpe:/o:sun:opensolaris:snv_67:*:sparc:*:*:*:*:*
  • OR cpe:/o:sun:opensolaris:snv_67:*:x86:*:*:*:*:*
  • OR cpe:/o:sun:opensolaris:snv_68:*:sparc:*:*:*:*:*
  • OR cpe:/o:sun:opensolaris:snv_68:*:x86:*:*:*:*:*
  • OR cpe:/o:sun:opensolaris:snv_69:*:sparc:*:*:*:*:*
  • OR cpe:/o:sun:opensolaris:snv_69:*:x86:*:*:*:*:*
  • OR cpe:/o:sun:opensolaris:snv_70:*:sparc:*:*:*:*:*
  • OR cpe:/o:sun:opensolaris:snv_70:*:x86:*:*:*:*:*
  • OR cpe:/o:sun:opensolaris:snv_71:*:sparc:*:*:*:*:*
  • OR cpe:/o:sun:opensolaris:snv_71:*:x86:*:*:*:*:*
  • OR cpe:/o:sun:opensolaris:snv_72:*:sparc:*:*:*:*:*
  • OR cpe:/o:sun:opensolaris:snv_72:*:x86:*:*:*:*:*
  • OR cpe:/o:sun:opensolaris:snv_73:*:sparc:*:*:*:*:*
  • OR cpe:/o:sun:opensolaris:snv_73:*:x86:*:*:*:*:*
  • OR cpe:/o:sun:opensolaris:snv_74:*:sparc:*:*:*:*:*
  • OR cpe:/o:sun:opensolaris:snv_74:*:x86:*:*:*:*:*
  • OR cpe:/o:sun:opensolaris:snv_75:*:sparc:*:*:*:*:*
  • OR cpe:/o:sun:opensolaris:snv_75:*:x86:*:*:*:*:*
  • OR cpe:/o:sun:opensolaris:snv_76:*:sparc:*:*:*:*:*
  • OR cpe:/o:sun:opensolaris:snv_76:*:x86:*:*:*:*:*
  • OR cpe:/o:sun:opensolaris:snv_77:*:sparc:*:*:*:*:*
  • OR cpe:/o:sun:opensolaris:snv_77:*:x86:*:*:*:*:*
  • OR cpe:/o:sun:opensolaris:snv_78:*:sparc:*:*:*:*:*
  • OR cpe:/o:sun:opensolaris:snv_78:*:x86:*:*:*:*:*
  • OR cpe:/o:sun:opensolaris:snv_79:*:sparc:*:*:*:*:*
  • OR cpe:/o:sun:opensolaris:snv_79:*:x86:*:*:*:*:*
  • OR cpe:/o:sun:opensolaris:snv_80:*:sparc:*:*:*:*:*
  • OR cpe:/o:sun:opensolaris:snv_80:*:x86:*:*:*:*:*
  • OR cpe:/o:sun:opensolaris:snv_81:*:sparc:*:*:*:*:*
  • OR cpe:/o:sun:opensolaris:snv_81:*:x86:*:*:*:*:*
  • OR cpe:/o:sun:opensolaris:snv_82:*:sparc:*:*:*:*:*
  • OR cpe:/o:sun:opensolaris:snv_82:*:x86:*:*:*:*:*
  • OR cpe:/o:sun:opensolaris:snv_83:*:sparc:*:*:*:*:*
  • OR cpe:/o:sun:opensolaris:snv_83:*:x86:*:*:*:*:*
  • OR cpe:/o:sun:opensolaris:snv_84:*:sparc:*:*:*:*:*
  • OR cpe:/o:sun:opensolaris:snv_84:*:x86:*:*:*:*:*
  • OR cpe:/o:sun:opensolaris:snv_85:*:sparc:*:*:*:*:*
  • OR cpe:/o:sun:opensolaris:snv_85:*:x86:*:*:*:*:*
  • OR cpe:/o:sun:opensolaris:snv_86:*:sparc:*:*:*:*:*
  • OR cpe:/o:sun:opensolaris:snv_86:*:x86:*:*:*:*:*
  • OR cpe:/o:sun:opensolaris:snv_87:*:sparc:*:*:*:*:*
  • OR cpe:/o:sun:opensolaris:snv_87:*:x86:*:*:*:*:*
  • OR cpe:/o:sun:opensolaris:snv_88:*:sparc:*:*:*:*:*
  • OR cpe:/o:sun:opensolaris:snv_88:*:x86:*:*:*:*:*
  • OR cpe:/o:sun:opensolaris:snv_89:*:sparc:*:*:*:*:*
  • OR cpe:/o:sun:opensolaris:snv_89:*:x86:*:*:*:*:*
  • OR cpe:/o:sun:opensolaris:snv_90:*:sparc:*:*:*:*:*
  • OR cpe:/o:sun:opensolaris:snv_90:*:x86:*:*:*:*:*
  • OR cpe:/o:sun:opensolaris:snv_91:*:sparc:*:*:*:*:*
  • OR cpe:/o:sun:opensolaris:snv_91:*:x86:*:*:*:*:*
  • OR cpe:/o:sun:opensolaris:snv_92:*:sparc:*:*:*:*:*
  • OR cpe:/o:sun:opensolaris:snv_92:*:x86:*:*:*:*:*
  • OR cpe:/o:sun:opensolaris:snv_93:*:sparc:*:*:*:*:*
  • OR cpe:/o:sun:opensolaris:snv_93:*:x86:*:*:*:*:*
  • OR cpe:/o:sun:opensolaris:snv_94:*:sparc:*:*:*:*:*
  • OR cpe:/o:sun:opensolaris:snv_94:*:x86:*:*:*:*:*
  • OR cpe:/o:sun:opensolaris:snv_95:*:sparc:*:*:*:*:*
  • OR cpe:/o:sun:opensolaris:snv_95:*:x86:*:*:*:*:*
  • OR cpe:/o:sun:opensolaris:snv_96:*:sparc:*:*:*:*:*
  • OR cpe:/o:sun:opensolaris:snv_96:*:x86:*:*:*:*:*
  • OR cpe:/o:sun:opensolaris:snv_97:*:sparc:*:*:*:*:*
  • OR cpe:/o:sun:opensolaris:snv_97:*:x86:*:*:*:*:*
  • OR cpe:/o:sun:opensolaris:snv_98:*:sparc:*:*:*:*:*
  • OR cpe:/o:sun:opensolaris:snv_98:*:x86:*:*:*:*:*
  • OR cpe:/o:sun:opensolaris:snv_99:*:sparc:*:*:*:*:*
  • OR cpe:/o:sun:opensolaris:snv_99:*:x86:*:*:*:*:*
  • OR cpe:/o:sun:opensolaris:snv_100:*:sparc:*:*:*:*:*
  • OR cpe:/o:sun:opensolaris:snv_100:*:x86:*:*:*:*:*
  • OR cpe:/o:sun:opensolaris:snv_101:*:sparc:*:*:*:*:*
  • OR cpe:/o:sun:opensolaris:snv_101:*:x86:*:*:*:*:*
  • OR cpe:/o:sun:opensolaris:snv_102:*:sparc:*:*:*:*:*
  • OR cpe:/o:sun:opensolaris:snv_102:*:x86:*:*:*:*:*
  • OR cpe:/o:sun:solaris:8.0:*:sparc:*:*:*:*:*
  • OR cpe:/o:sun:solaris:8.0:*:x86:*:*:*:*:*
  • OR cpe:/o:sun:solaris:9.0:*:sparc:*:*:*:*:*
  • OR cpe:/o:sun:solaris:9.0:*:x86:*:*:*:*:*
  • OR cpe:/o:sun:solaris:10.0:*:sparc:*:*:*:*:*
  • OR cpe:/o:sun:solaris:10.0:*:x86:*:*:*:*:*
  • OR cpe:/o:ubuntu:ubuntu_linux:6.06:_nil_:lts:*:*:*:*:*
  • OR cpe:/o:ubuntu:ubuntu_linux:6.10:*:*:*:*:*:*:*
  • OR cpe:/o:ubuntu:ubuntu_linux:7.04:*:*:*:*:*:*:*
  • OR cpe:/o:ubuntu:ubuntu_linux:7.10:*:*:*:*:*:*:*

    • Configuration CCN 1:
  • cpe:/o:sun:solaris:8::x86:*:*:*:*:*
  • OR cpe:/o:redhat:enterprise_linux:2.1:*:as:*:*:*:*:*
  • OR cpe:/o:redhat:enterprise_linux:2.1:*:es:*:*:*:*:*
  • OR cpe:/o:sun:solaris:8::sparc:*:*:*:*:*
  • OR cpe:/o:sun:solaris:9::x86:*:*:*:*:*
  • OR cpe:/o:debian:debian_linux:3.1:*:*:*:*:*:*:*
  • OR cpe:/o:sun:solaris:10::sparc:*:*:*:*:*
  • OR cpe:/o:sun:solaris:10::x86:*:*:*:*:*
  • OR cpe:/o:redhat:linux_advanced_workstation:2.1::itanium:*:*:*:*:*
  • OR cpe:/o:canonical:ubuntu:6.06::lts:*:*:*:*:*
  • OR cpe:/o:openbsd:openbsd:4.0:*:*:*:*:*:*:*
  • OR cpe:/o:debian:debian_linux:4.0:*:*:*:*:*:*:*
  • OR cpe:/o:canonical:ubuntu:7.04:*:*:*:*:*:*:*
  • OR cpe:/o:openbsd:openbsd:4.1:*:*:*:*:*:*:*
  • OR cpe:/o:canonical:ubuntu:7.10:*:*:*:*:*:*:*
  • OR cpe:/o:openbsd:openbsd:4.2:*:*:*:*:*:*:*
  • OR cpe:/o:sun:opensolaris:build_snv_89::x86:*:*:*:*:*
  • OR cpe:/o:sun:opensolaris:build_snv_89::sparc:*:*:*:*:*
  • OR cpe:/o:sun:solaris:9::sparc:*:*:*:*:*
  • OR cpe:/o:sun:opensolaris:build_snv_95::sparc:*:*:*:*:*
  • OR cpe:/o:sun:opensolaris:build_snv_95::x86:*:*:*:*:*
  • OR cpe:/o:sun:opensolaris:build_snv_01::x86:*:*:*:*:*
  • OR cpe:/o:sun:opensolaris:build_snv_02::x86:*:*:*:*:*
  • OR cpe:/o:sun:opensolaris:build_snv_13::x86:*:*:*:*:*
  • OR cpe:/o:sun:opensolaris:build_snv_19::x86:*:*:*:*:*
  • OR cpe:/o:sun:opensolaris:build_snv_22::x86:*:*:*:*:*
  • OR cpe:/o:sun:opensolaris:build_snv_39::x86:*:*:*:*:*
  • OR cpe:/o:sun:opensolaris:build_snv_64::x86:*:*:*:*:*
  • OR cpe:/o:sun:opensolaris:build_snv_88::x86:*:*:*:*:*
  • OR cpe:/o:sun:opensolaris:build_snv_01::sparc:*:*:*:*:*
  • OR cpe:/o:sun:opensolaris:build_snv_02::sparc:*:*:*:*:*
  • OR cpe:/o:sun:opensolaris:build_snv_13::sparc:*:*:*:*:*
  • OR cpe:/o:sun:opensolaris:build_snv_19::sparc:*:*:*:*:*
  • OR cpe:/o:sun:opensolaris:build_snv_22::sparc:*:*:*:*:*
  • OR cpe:/o:sun:opensolaris:build_snv_39::sparc:*:*:*:*:*
  • OR cpe:/o:sun:opensolaris:build_snv_64::sparc:*:*:*:*:*
  • OR cpe:/o:sun:opensolaris:build_snv_88::sparc:*:*:*:*:*
  • OR cpe:/o:sun:opensolaris:build_snv_12::x86:*:*:*:*:*
  • OR cpe:/o:sun:opensolaris:build_snv_59::x86:*:*:*:*:*
  • OR cpe:/o:sun:opensolaris:build_snv_68::x86:*:*:*:*:*
  • OR cpe:/o:sun:opensolaris:build_snv_85::x86:*:*:*:*:*
  • OR cpe:/o:sun:opensolaris:build_snv_87::x86:*:*:*:*:*
  • OR cpe:/o:sun:opensolaris:build_snv_36::x86:*:*:*:*:*
  • OR cpe:/o:sun:opensolaris:build_snv_67::x86:*:*:*:*:*
  • OR cpe:/o:sun:opensolaris:build_snv_36::sparc:*:*:*:*:*
  • OR cpe:/o:sun:opensolaris:build_snv_67::sparc:*:*:*:*:*
  • OR cpe:/o:sun:opensolaris:build_snv_59::sparc:*:*:*:*:*
  • OR cpe:/o:sun:opensolaris:build_snv_68::sparc:*:*:*:*:*
  • OR cpe:/o:sun:opensolaris:build_snv_85::sparc:*:*:*:*:*
  • OR cpe:/o:sun:opensolaris:build_snv_87::sparc:*:*:*:*:*
  • OR cpe:/o:sun:opensolaris:build_snv_80::sparc:*:*:*:*:*
  • OR cpe:/o:sun:opensolaris:build_snv_100::x86:*:*:*:*:*
  • OR cpe:/o:sun:opensolaris:build_snv_100::sparc:*:*:*:*:*
  • OR cpe:/o:sun:opensolaris:build_snv_102::sparc:*:*:*:*:*
  • OR cpe:/o:sun:opensolaris:build_snv_102::x86:*:*:*:*:*
  • OR cpe:/o:sun:opensolaris:build_snv_91::x86:*:*:*:*:*
  • OR cpe:/o:sun:opensolaris:build_snv_91::sparc:*:*:*:*:*
  • OR cpe:/o:sun:opensolaris:build_snv_101::x86:*:*:*:*:*
  • OR cpe:/o:sun:opensolaris:build_snv_101::sparc:*:*:*:*:*
  • OR cpe:/o:sun:opensolaris:build_snv_92::sparc:*:*:*:*:*
  • OR cpe:/o:sun:opensolaris:build_snv_92::x86:*:*:*:*:*

    • * Denotes that component is vulnerable
    Oval Definitions
    Definition IDClassTitleLast Modified
    oval:org.mitre.oval:def:17047
    P
    		USN-531-2 -- dhcp vulnerability
    2014-06-30
    oval:org.mitre.oval:def:17549
    P
    		USN-531-1 -- dhcp vulnerability
    2014-06-30
    oval:org.mitre.oval:def:18537
    P
    		DSA-1388-3 dhcp - buffer overflow
    2014-06-23
    oval:org.mitre.oval:def:20239
    P
    		DSA-1388-1 dhcp
    2014-06-23
    oval:org.mitre.oval:def:5817
    V
    		Security Vulnerabilities in DHCP Handling of DHCP Requests May Allow Remote Users to Execute Arbitrary Code or Cause a Denial of the DHCP Service
    2009-02-16
    oval:org.debian:def:1388
    V
    		buffer overflow
    2007-10-29
    BACK
    debian debian linux 3.1
    debian debian linux 4.0
    openbsd openbsd 4.0
    openbsd openbsd 4.1
    openbsd openbsd 4.2
    redhat enterprise linux 2.1
    redhat enterprise linux 2.1
    redhat linux advanced workstation 2.1
    sun opensolaris snv_01
    sun opensolaris snv_01
    sun opensolaris snv_02
    sun opensolaris snv_02
    sun opensolaris snv_03
    sun opensolaris snv_03
    sun opensolaris snv_04
    sun opensolaris snv_04
    sun opensolaris snv_05
    sun opensolaris snv_05
    sun opensolaris snv_06
    sun opensolaris snv_06
    sun opensolaris snv_07
    sun opensolaris snv_07
    sun opensolaris snv_08
    sun opensolaris snv_08
    sun opensolaris snv_09
    sun opensolaris snv_09
    sun opensolaris snv_10
    sun opensolaris snv_10
    sun opensolaris snv_11
    sun opensolaris snv_11
    sun opensolaris snv_12
    sun opensolaris snv_12
    sun opensolaris snv_13
    sun opensolaris snv_13
    sun opensolaris snv_14
    sun opensolaris snv_14
    sun opensolaris snv_15
    sun opensolaris snv_15
    sun opensolaris snv_16
    sun opensolaris snv_16
    sun opensolaris snv_17
    sun opensolaris snv_17
    sun opensolaris snv_18
    sun opensolaris snv_18
    sun opensolaris snv_19
    sun opensolaris snv_19
    sun opensolaris snv_20
    sun opensolaris snv_20
    sun opensolaris snv_21
    sun opensolaris snv_21
    sun opensolaris snv_22
    sun opensolaris snv_22
    sun opensolaris snv_23
    sun opensolaris snv_23
    sun opensolaris snv_24
    sun opensolaris snv_24
    sun opensolaris snv_25
    sun opensolaris snv_25
    sun opensolaris snv_26
    sun opensolaris snv_26
    sun opensolaris snv_27
    sun opensolaris snv_27
    sun opensolaris snv_28
    sun opensolaris snv_28
    sun opensolaris snv_29
    sun opensolaris snv_29
    sun opensolaris snv_30
    sun opensolaris snv_30
    sun opensolaris snv_31
    sun opensolaris snv_31
    sun opensolaris snv_32
    sun opensolaris snv_32
    sun opensolaris snv_33
    sun opensolaris snv_33
    sun opensolaris snv_34
    sun opensolaris snv_34
    sun opensolaris snv_35
    sun opensolaris snv_35
    sun opensolaris snv_36
    sun opensolaris snv_36
    sun opensolaris snv_37
    sun opensolaris snv_37
    sun opensolaris snv_38
    sun opensolaris snv_38
    sun opensolaris snv_39
    sun opensolaris snv_39
    sun opensolaris snv_40
    sun opensolaris snv_40
    sun opensolaris snv_41
    sun opensolaris snv_41
    sun opensolaris snv_42
    sun opensolaris snv_42
    sun opensolaris snv_43
    sun opensolaris snv_43
    sun opensolaris snv_44
    sun opensolaris snv_44
    sun opensolaris snv_45
    sun opensolaris snv_45
    sun opensolaris snv_46
    sun opensolaris snv_46
    sun opensolaris snv_47
    sun opensolaris snv_47
    sun opensolaris snv_48
    sun opensolaris snv_48
    sun opensolaris snv_49
    sun opensolaris snv_49
    sun opensolaris snv_50
    sun opensolaris snv_50
    sun opensolaris snv_51
    sun opensolaris snv_51
    sun opensolaris snv_52
    sun opensolaris snv_52
    sun opensolaris snv_53
    sun opensolaris snv_53
    sun opensolaris snv_54
    sun opensolaris snv_54
    sun opensolaris snv_55
    sun opensolaris snv_55
    sun opensolaris snv_56
    sun opensolaris snv_56
    sun opensolaris snv_57
    sun opensolaris snv_57
    sun opensolaris snv_58
    sun opensolaris snv_58
    sun opensolaris snv_59
    sun opensolaris snv_59
    sun opensolaris snv_60
    sun opensolaris snv_60
    sun opensolaris snv_61
    sun opensolaris snv_61
    sun opensolaris snv_62
    sun opensolaris snv_62
    sun opensolaris snv_63
    sun opensolaris snv_63
    sun opensolaris snv_64
    sun opensolaris snv_64
    sun opensolaris snv_65
    sun opensolaris snv_65
    sun opensolaris snv_66
    sun opensolaris snv_66
    sun opensolaris snv_67
    sun opensolaris snv_67
    sun opensolaris snv_68
    sun opensolaris snv_68
    sun opensolaris snv_69
    sun opensolaris snv_69
    sun opensolaris snv_70
    sun opensolaris snv_70
    sun opensolaris snv_71
    sun opensolaris snv_71
    sun opensolaris snv_72
    sun opensolaris snv_72
    sun opensolaris snv_73
    sun opensolaris snv_73
    sun opensolaris snv_74
    sun opensolaris snv_74
    sun opensolaris snv_75
    sun opensolaris snv_75
    sun opensolaris snv_76
    sun opensolaris snv_76
    sun opensolaris snv_77
    sun opensolaris snv_77
    sun opensolaris snv_78
    sun opensolaris snv_78
    sun opensolaris snv_79
    sun opensolaris snv_79
    sun opensolaris snv_80
    sun opensolaris snv_80
    sun opensolaris snv_81
    sun opensolaris snv_81
    sun opensolaris snv_82
    sun opensolaris snv_82
    sun opensolaris snv_83
    sun opensolaris snv_83
    sun opensolaris snv_84
    sun opensolaris snv_84
    sun opensolaris snv_85
    sun opensolaris snv_85
    sun opensolaris snv_86
    sun opensolaris snv_86
    sun opensolaris snv_87
    sun opensolaris snv_87
    sun opensolaris snv_88
    sun opensolaris snv_88
    sun opensolaris snv_89
    sun opensolaris snv_89
    sun opensolaris snv_90
    sun opensolaris snv_90
    sun opensolaris snv_91
    sun opensolaris snv_91
    sun opensolaris snv_92
    sun opensolaris snv_92
    sun opensolaris snv_93
    sun opensolaris snv_93
    sun opensolaris snv_94
    sun opensolaris snv_94
    sun opensolaris snv_95
    sun opensolaris snv_95
    sun opensolaris snv_96
    sun opensolaris snv_96
    sun opensolaris snv_97
    sun opensolaris snv_97
    sun opensolaris snv_98
    sun opensolaris snv_98
    sun opensolaris snv_99
    sun opensolaris snv_99
    sun opensolaris snv_100
    sun opensolaris snv_100
    sun opensolaris snv_101
    sun opensolaris snv_101
    sun opensolaris snv_102
    sun opensolaris snv_102
    sun solaris 8.0
    sun solaris 8.0
    sun solaris 9.0
    sun solaris 9.0
    sun solaris 10.0
    sun solaris 10.0
    ubuntu ubuntu linux 6.06 _nil_
    ubuntu ubuntu linux 6.10
    ubuntu ubuntu linux 7.04
    ubuntu ubuntu linux 7.10
    sun solaris 8
    redhat enterprise linux 2.1
    redhat enterprise linux 2.1
    sun solaris 8
    sun solaris 9
    debian debian linux 3.1
    sun solaris 10
    sun solaris 10
    redhat linux advanced workstation 2.1
    canonical ubuntu 6.06
    openbsd openbsd 4.0
    debian debian linux 4.0
    canonical ubuntu 7.04
    openbsd openbsd 4.1
    canonical ubuntu 7.10
    openbsd openbsd 4.2
    sun opensolaris build_snv_89
    sun opensolaris build_snv_89
    sun solaris 9
    sun opensolaris build_snv_95
    sun opensolaris build_snv_95
    sun opensolaris build_snv_01
    sun opensolaris build_snv_02
    sun opensolaris build_snv_13
    sun opensolaris build_snv_19
    sun opensolaris build_snv_22
    sun opensolaris build_snv_39
    sun opensolaris build_snv_64
    sun opensolaris build_snv_88
    sun opensolaris build_snv_01
    sun opensolaris build_snv_02
    sun opensolaris build_snv_13
    sun opensolaris build_snv_19
    sun opensolaris build_snv_22
    sun opensolaris build_snv_39
    sun opensolaris build_snv_64
    sun opensolaris build_snv_88
    sun opensolaris build_snv_12
    sun opensolaris build_snv_59
    sun opensolaris build_snv_68
    sun opensolaris build_snv_85
    sun opensolaris build_snv_87
    sun opensolaris build_snv_36
    sun opensolaris build_snv_67
    sun opensolaris build_snv_36
    sun opensolaris build_snv_67
    sun opensolaris build_snv_59
    sun opensolaris build_snv_68
    sun opensolaris build_snv_85
    sun opensolaris build_snv_87
    sun opensolaris build_snv_80
    sun opensolaris build_snv_100
    sun opensolaris build_snv_100
    sun opensolaris build_snv_102
    sun opensolaris build_snv_102
    sun opensolaris build_snv_91
    sun opensolaris build_snv_91
    sun opensolaris build_snv_101
    sun opensolaris build_snv_101
    sun opensolaris build_snv_92
    sun opensolaris build_snv_92