Stack-based buffer overflow in the cons_options function in options.c in dhcpd in OpenBSD 4.0 up to and including 4.2, and some other dhcpd implementations based on ISC dhcp-2, allows remote malicious users to execute arbitrary code or cause a denial of service (daemon crash) via a DHCP request specifying a maximum message size smaller than the minimum IP MTU.
| Vulnerable Product | Search on Vulmon | Subscribe to Product |
|---|---|---|
sun solaris 10.0 |
||
sun opensolaris snv_03 |
||
sun opensolaris snv_06 |
||
sun opensolaris snv_12 |
||
sun opensolaris snv_13 |
||
sun opensolaris snv_24 |
||
sun opensolaris snv_23 |
||
sun opensolaris snv_34 |
||
openbsd openbsd 4.2 |
||
sun solaris 8.0 |
||
sun opensolaris snv_01 |
||
sun opensolaris snv_08 |
||
sun opensolaris snv_100 |
||
sun opensolaris snv_101 |
||
sun opensolaris snv_21 |
||
sun opensolaris snv_20 |
||
sun opensolaris snv_19 |
||
sun opensolaris snv_22 |
||
sun opensolaris snv_28 |
||
sun opensolaris snv_31 |
||
sun opensolaris snv_30 |
||
sun opensolaris snv_44 |
||
sun opensolaris snv_38 |
||
sun opensolaris snv_50 |
||
sun opensolaris snv_49 |
||
sun opensolaris snv_59 |
||
sun opensolaris snv_65 |
||
sun opensolaris snv_68 |
||
sun opensolaris snv_72 |
||
sun opensolaris snv_75 |
||
sun opensolaris snv_78 |
||
sun opensolaris snv_76 |
||
sun opensolaris snv_82 |
||
sun opensolaris snv_92 |
||
sun opensolaris snv_93 |
||
sun solaris 9.0 |
||
sun opensolaris snv_04 |
||
sun opensolaris snv_05 |
||
sun opensolaris snv_102 |
||
sun opensolaris snv_11 |
||
sun opensolaris snv_25 |
||
sun opensolaris snv_17 |
||
sun opensolaris snv_33 |
||
sun opensolaris snv_27 |
||
sun opensolaris snv_29 |
||
sun opensolaris snv_40 |
||
sun opensolaris snv_45 |
||
sun opensolaris snv_39 |
||
sun opensolaris snv_52 |
||
sun opensolaris snv_51 |
||
sun opensolaris snv_58 |
||
sun opensolaris snv_64 |
||
sun opensolaris snv_67 |
||
sun opensolaris snv_70 |
||
sun opensolaris snv_26 |
||
sun opensolaris snv_41 |
||
sun opensolaris snv_42 |
||
sun opensolaris snv_48 |
||
sun opensolaris snv_55 |
||
sun opensolaris snv_53 |
||
sun opensolaris snv_46 |
||
sun opensolaris snv_61 |
||
sun opensolaris snv_63 |
||
sun opensolaris snv_60 |
||
sun opensolaris snv_66 |
||
sun opensolaris snv_74 |
||
sun opensolaris snv_83 |
||
sun opensolaris snv_79 |
||
sun opensolaris snv_87 |
||
sun opensolaris snv_88 |
||
sun opensolaris snv_89 |
||
sun opensolaris snv_99 |
||
sun opensolaris snv_98 |
||
sun opensolaris snv_54 |
||
sun opensolaris snv_85 |
||
sun opensolaris snv_77 |
||
sun opensolaris snv_94 |
||
ubuntu ubuntu linux 7.04 |
||
ubuntu ubuntu linux 7.10 |
||
debian debian linux 3.1 |
||
sun opensolaris snv_84 |
||
sun opensolaris snv_81 |
||
sun opensolaris snv_86 |
||
sun opensolaris snv_95 |
||
sun opensolaris snv_02 |
||
sun opensolaris snv_09 |
||
sun opensolaris snv_37 |
||
sun opensolaris snv_71 |
||
sun opensolaris snv_69 |
||
ubuntu ubuntu linux 6.06 |
||
ubuntu ubuntu linux 6.10 |
||
sun opensolaris snv_10 |
||
sun opensolaris snv_15 |
||
sun opensolaris snv_16 |
||
sun opensolaris snv_35 |
||
sun opensolaris snv_32 |
||
sun opensolaris snv_36 |
||
sun opensolaris snv_56 |
||
sun opensolaris snv_62 |
||
sun opensolaris snv_73 |
||
sun opensolaris snv_80 |
||
sun opensolaris snv_91 |
||
sun opensolaris snv_90 |
||
sun opensolaris snv_96 |
||
redhat enterprise linux 2.1 |
||
redhat linux advanced workstation 2.1 |
||
openbsd openbsd 4.0 |
||
openbsd openbsd 4.1 |
||
sun opensolaris snv_07 |
||
sun opensolaris snv_14 |
||
sun opensolaris snv_18 |
||
sun opensolaris snv_43 |
||
sun opensolaris snv_47 |
||
sun opensolaris snv_57 |
||
sun opensolaris snv_97 |
||
debian debian linux 4.0 |
Vulmon