Stack-based buffer overflow in the cons_options function in options.c in dhcpd in OpenBSD 4.0 up to and including 4.2, and some other dhcpd implementations based on ISC dhcp-2, allows remote malicious users to execute arbitrary code or cause a denial of service (daemon crash) via a DHCP request specifying a maximum message size smaller than the minimum IP MTU.
| Vulnerable Product | Search on Vulmon | Subscribe to Product |
|---|---|---|
sun opensolaris snv 36 |
||
sun opensolaris snv 30 |
||
sun opensolaris snv 70 |
||
sun opensolaris snv 33 |
||
sun opensolaris snv 101 |
||
sun opensolaris snv 90 |
||
sun opensolaris snv 93 |
||
sun opensolaris snv 85 |
||
sun opensolaris snv 57 |
||
sun opensolaris snv 87 |
||
openbsd openbsd 4.1 |
||
sun opensolaris snv 26 |
||
sun opensolaris snv 50 |
||
redhat enterprise linux 2.1 |
||
sun opensolaris snv 73 |
||
sun opensolaris snv 72 |
||
sun opensolaris snv 67 |
||
ubuntu ubuntu linux 6.06 |
||
sun opensolaris snv 91 |
||
sun opensolaris snv 92 |
||
sun opensolaris snv 01 |
||
sun opensolaris snv 77 |
||
sun opensolaris snv 18 |
||
sun opensolaris snv 53 |
||
sun opensolaris snv 41 |
||
sun opensolaris snv 74 |
||
sun opensolaris snv 11 |
||
sun opensolaris snv 66 |
||
sun opensolaris snv 27 |
||
sun opensolaris snv 39 |
||
sun opensolaris snv 23 |
||
sun opensolaris snv 80 |
||
ubuntu ubuntu linux 7.10 |
||
sun opensolaris snv 46 |
||
sun opensolaris snv 52 |
||
sun opensolaris snv 07 |
||
sun opensolaris snv 82 |
||
sun opensolaris snv 55 |
||
redhat linux advanced workstation 2.1 |
||
sun opensolaris snv 24 |
||
sun opensolaris snv 88 |
||
sun opensolaris snv 31 |
||
sun opensolaris snv 05 |
||
debian debian linux 3.1 |
||
sun opensolaris snv 56 |
||
sun opensolaris snv 43 |
||
sun opensolaris snv 04 |
||
sun opensolaris snv 58 |
||
sun opensolaris snv 54 |
||
ubuntu ubuntu linux 7.04 |
||
sun opensolaris snv 40 |
||
sun opensolaris snv 84 |
||
sun opensolaris snv 65 |
||
sun solaris 8.0 |
||
debian debian linux 4.0 |
||
sun opensolaris snv 49 |
||
sun opensolaris snv 09 |
||
sun opensolaris snv 17 |
||
sun opensolaris snv 86 |
||
sun opensolaris snv 06 |
||
sun opensolaris snv 62 |
||
sun opensolaris snv 37 |
||
sun opensolaris snv 100 |
||
sun opensolaris snv 71 |
||
sun opensolaris snv 22 |
||
sun opensolaris snv 35 |
||
sun opensolaris snv 13 |
||
sun opensolaris snv 64 |
||
sun opensolaris snv 34 |
||
sun opensolaris snv 61 |
||
sun opensolaris snv 79 |
||
sun opensolaris snv 42 |
||
sun opensolaris snv 44 |
||
sun opensolaris snv 38 |
||
sun opensolaris snv 89 |
||
sun opensolaris snv 29 |
||
sun solaris 9.0 |
||
sun opensolaris snv 59 |
||
sun opensolaris snv 10 |
||
sun solaris 10.0 |
||
sun opensolaris snv 45 |
||
sun opensolaris snv 28 |
||
sun opensolaris snv 78 |
||
sun opensolaris snv 08 |
||
sun opensolaris snv 96 |
||
sun opensolaris snv 48 |
||
sun opensolaris snv 99 |
||
sun opensolaris snv 97 |
||
sun opensolaris snv 25 |
||
sun opensolaris snv 51 |
||
sun opensolaris snv 63 |
||
sun opensolaris snv 83 |
||
sun opensolaris snv 16 |
||
sun opensolaris snv 12 |
||
sun opensolaris snv 81 |
||
sun opensolaris snv 94 |
||
sun opensolaris snv 19 |
||
sun opensolaris snv 98 |
||
sun opensolaris snv 32 |
||
ubuntu ubuntu linux 6.10 |
||
sun opensolaris snv 69 |
||
sun opensolaris snv 68 |
||
sun opensolaris snv 95 |
||
sun opensolaris snv 20 |
||
sun opensolaris snv 102 |
||
openbsd openbsd 4.2 |
||
sun opensolaris snv 02 |
||
sun opensolaris snv 14 |
||
sun opensolaris snv 60 |
||
sun opensolaris snv 03 |
||
sun opensolaris snv 21 |
||
sun opensolaris snv 75 |
||
sun opensolaris snv 76 |
||
sun opensolaris snv 15 |
||
sun opensolaris snv 47 |
||
openbsd openbsd 4.0 |
Vulmon