CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:L/Au:N/C:C/I:C/A:C
AI Score
Confidence
High
EPSS
Percentile
94.2%
It was discovered that the DHCP client as included in dhcp3 did not verify
the length of certain option fields when processing a response from an IPv4
dhcp server. If a user running Ubuntu 6.06 LTS or 8.04 LTS connected to a
malicious dhcp server, a remote attacker could cause a denial of service or
execute arbitrary code as the user invoking the program, typically the
‘dhcp’ user. For users running Ubuntu 8.10 or 9.04, a remote attacker
should only be able to cause a denial of service in the DHCP client. In
Ubuntu 9.04, attackers would also be isolated by the AppArmor dhclient3
profile.
OS | Version | Architecture | Package | Version | Filename |
---|---|---|---|---|---|
Ubuntu | 9.04 | noarch | dhcp3-client | < 3.1.1-5ubuntu8.1 | UNKNOWN |
Ubuntu | 9.04 | noarch | dhcp3-client | < udeb-3.1.1-5ubuntu8.1 | UNKNOWN |
Ubuntu | 9.04 | noarch | dhcp3-common | < 3.1.1-5ubuntu8.1 | UNKNOWN |
Ubuntu | 9.04 | noarch | dhcp3-dev | < 3.1.1-5ubuntu8.1 | UNKNOWN |
Ubuntu | 9.04 | noarch | dhcp3-relay | < 3.1.1-5ubuntu8.1 | UNKNOWN |
Ubuntu | 9.04 | noarch | dhcp3-server | < 3.1.1-5ubuntu8.1 | UNKNOWN |
Ubuntu | 9.04 | noarch | dhcp3-server | < ldap-3.1.1-5ubuntu8.1 | UNKNOWN |
Ubuntu | 9.04 | noarch | dhcp3-client-udeb | < 3.1.1-5ubuntu8.1 | UNKNOWN |
Ubuntu | 8.10 | noarch | dhcp3-client | < 3.1.1-1ubuntu2.1 | UNKNOWN |
Ubuntu | 8.10 | noarch | dhcp3-client | < udeb-3.1.1-1ubuntu2.1 | UNKNOWN |