QwikSec

Security Database

CVE

CWE

Training

CVE Database
/

CVE-2007-5365

Back to search

CVE-2007-5365

Published: Oct 11, 2007

Modified: Aug 7, 2024

PUBLISHED

Description

Stack-based buffer overflow in the cons_options function in options.c in dhcpd in OpenBSD 4.0 through 4.2, and some other dhcpd implementations based on ISC dhcp-2, allows remote attackers to execute arbitrary code or cause a denial of service (daemon crash) via a DHCP request specifying a maximum message size smaller than the minimum IP MTU.

VendorProductVersions

n/a

n/a

affected
n/a

References

27338
third-party-advisory
x_refsource_SECUNIA
27350
third-party-advisory
x_refsource_SECUNIA
ADV-2008-3088
vdb-entry
x_refsource_VUPEN
4601
exploit
x_refsource_EXPLOIT-DB
[4.2] 20071008 001: SECURITY FIX: October 8, 2007
vendor-advisory
x_refsource_OPENBSD
25984
vdb-entry
x_refsource_BID
openbsd-dhcp-bo(37045)
vdb-entry
x_refsource_XF
RHSA-2007:0970
vendor-advisory
x_refsource_REDHAT
DSA-1388
vendor-advisory
x_refsource_DEBIAN
USN-531-1
vendor-advisory
x_refsource_UBUNTU
oval:org.mitre.oval:def:5817
vdb-entry
signature
x_refsource_OVAL
USN-531-2
vendor-advisory
x_refsource_UBUNTU
27160
third-party-advisory
x_refsource_SECUNIA
27273
third-party-advisory
x_refsource_SECUNIA
[4.0] 20071008 016: SECURITY FIX: October 8, 2007
vendor-advisory
x_refsource_OPENBSD
243806
vendor-advisory
x_refsource_SUNALERT
32668
third-party-advisory
x_refsource_SECUNIA
[4.1] 20071008 010: SECURITY FIX: October 8, 2007
vendor-advisory
x_refsource_OPENBSD
1018794
vdb-entry
x_refsource_SECTRACK
1021157
vdb-entry
x_refsource_SECTRACK
32213
vdb-entry
x_refsource_BID

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Start Training

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

Scan Now