Lucene search
This script is Copyright (C) 2012-2021 and is owned by Tenable, Inc. or an Affiliate thereof.SL_20101130_DHCP_ON_SL6_X.NASLHistoryAug 01, 2012 - 12:00 a.m.
Scientific Linux Security Update : dhcp on SL6.x i386/x86_64
2012-08-0100:00:00
This script is Copyright (C) 2012-2021 and is owned by Tenable, Inc. or an Affiliate thereof.
www.tenable.com
10
CVSS2
4.3
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
PARTIAL
AV:N/AC:M/Au:N/C:N/I:N/A:P
EPSS
0.061
Percentile
93.6%
A NULL pointer dereference flaw was discovered in the way the dhcpd daemon parsed DHCPv6 packets. A remote attacker could use this flaw to crash dhcpd via a specially crafted DHCPv6 packet, if dhcpd was running as a DHCPv6 server. (CVE-2010-3611)
After installing this update, all DHCP servers will be restarted automatically.
#%NASL_MIN_LEVEL 70300
#
# (C) Tenable Network Security, Inc.
#
# The descriptive text is (C) Scientific Linux.
#
include('deprecated_nasl_level.inc');
include('compat.inc');
if (description)
{
script_id(60909);
script_version("1.6");
script_set_attribute(attribute:"plugin_modification_date", value:"2021/01/14");
script_cve_id("CVE-2010-3611");
script_name(english:"Scientific Linux Security Update : dhcp on SL6.x i386/x86_64");
script_summary(english:"Checks rpm output for the updated packages");
script_set_attribute(
attribute:"synopsis",
value:
"The remote Scientific Linux host is missing one or more security
updates."
);
script_set_attribute(
attribute:"description",
value:
"A NULL pointer dereference flaw was discovered in the way the dhcpd
daemon parsed DHCPv6 packets. A remote attacker could use this flaw to
crash dhcpd via a specially crafted DHCPv6 packet, if dhcpd was
running as a DHCPv6 server. (CVE-2010-3611)
After installing this update, all DHCP servers will be restarted
automatically."
);
# https://listserv.fnal.gov/scripts/wa.exe?A2=ind1103&L=scientific-linux-errata&T=0&P=4180
script_set_attribute(
attribute:"see_also",
value:"http://www.nessus.org/u?b9513dfe"
);
script_set_attribute(
attribute:"solution",
value:"Update the affected dhclient, dhcp and / or dhcp-devel packages."
);
script_set_cvss_base_vector("CVSS2#AV:N/AC:M/Au:N/C:N/I:N/A:P");
script_set_attribute(attribute:"plugin_type", value:"local");
script_set_attribute(attribute:"cpe", value:"x-cpe:/o:fermilab:scientific_linux");
script_set_attribute(attribute:"patch_publication_date", value:"2010/11/30");
script_set_attribute(attribute:"plugin_publication_date", value:"2012/08/01");
script_end_attributes();
script_category(ACT_GATHER_INFO);
script_copyright(english:"This script is Copyright (C) 2012-2021 and is owned by Tenable, Inc. or an Affiliate thereof.");
script_family(english:"Scientific Linux Local Security Checks");
script_dependencies("ssh_get_info.nasl");
script_require_keys("Host/local_checks_enabled", "Host/cpu", "Host/RedHat/release", "Host/RedHat/rpm-list");
exit(0);
}
include("audit.inc");
include("global_settings.inc");
include("rpm.inc");
if (!get_kb_item("Host/local_checks_enabled")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);
release = get_kb_item("Host/RedHat/release");
if (isnull(release) || "Scientific Linux " >!< release) audit(AUDIT_HOST_NOT, "running Scientific Linux");
if (!get_kb_item("Host/RedHat/rpm-list")) audit(AUDIT_PACKAGE_LIST_MISSING);
cpu = get_kb_item("Host/cpu");
if (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);
if (cpu >!< "x86_64" && cpu !~ "^i[3-6]86$") audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, "Scientific Linux", cpu);
flag = 0;
if (rpm_check(release:"SL6", reference:"dhclient-4.1.1-12.P1.el6_0.1")) flag++;
if (rpm_check(release:"SL6", reference:"dhcp-4.1.1-12.P1.el6_0.1")) flag++;
if (rpm_check(release:"SL6", reference:"dhcp-devel-4.1.1-12.P1.el6_0.1")) flag++;
if (flag)
{
if (report_verbosity > 0) security_warning(port:0, extra:rpm_report_get());
else security_warning(0);
exit(0);
}
else audit(AUDIT_HOST_NOT, "affected");
| Vendor | Product | Version | CPE |
|---|---|---|---|
| fermilab | scientific_linux | x-cpe:/o:fermilab:scientific_linux |
Related
nvd
nvd
CVE-2010-3611
2010-11-04 18:00:02
nessus
nessus
RHEL 6 : dhcp (RHSA-2010:0923)
2010-12-01 00:00:00
FreeBSD : isc-dhcp-server -- Empty link-address denial of service (f154a3c7-f7f4-11df-b617-00e0815b8da8)
2010-11-28 00:00:00
Mandriva Linux Security Advisory : dhcp (MDVSA-2010:226)
2010-11-11 00:00:00
openvas
openvas
Oracle: Security Advisory (ELSA-2010-0923)
2015-10-06 00:00:00
Fedora Update for dhcp FEDORA-2010-17312
2010-12-02 00:00:00
Mandriva Update for dhcp MDVSA-2010:226 (dhcp)
2010-11-16 00:00:00
securityvulns
securityvulns
ISC DHCP server DoS
2010-11-10 00:00:00
[ MDVSA-2010:226 ] dhcp
2010-11-10 00:00:00
redhat
redhat
(RHSA-2010:0923) Moderate: dhcp security update
2010-11-30 00:00:00
ubuntucve
ubuntucve
CVE-2010-3611
2010-11-04 00:00:00
oraclelinux
oraclelinux
dhcp security update
2011-02-10 00:00:00
cve
cve
CVE-2010-3611
2010-11-04 18:00:02
cvelist
cvelist
CVE-2010-3611
2010-11-04 17:00:00
fedora
fedora
[SECURITY] Fedora 14 Update: dhcp-4.2.0-14.P1.fc14
2010-11-13 21:59:03
[SECURITY] Fedora 13 Update: dhcp-4.1.1-27.P1.fc13
2010-11-22 22:16:32
[SECURITY] Fedora 14 Update: dhcp-4.2.0-16.P2.fc14
2010-12-17 08:40:59
debiancve
debiancve
CVE-2010-3611
2010-11-04 18:00:02
freebsd
freebsd
isc-dhcp-server -- Empty link-address denial of service
2010-11-02 00:00:00
prion
prion
Null pointer dereference
2010-11-04 18:00:00
CVSS2
4.3
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
PARTIAL
AV:N/AC:M/Au:N/C:N/I:N/A:P
EPSS
0.061
Percentile
93.6%
Related for SL_20101130_DHCP_ON_SL6_X.NASL