5
CVSSv2

CVE-2018-5732

Published: 09/10/2019 Updated: 18/10/2019
CVSS v2 Base Score: 5 | Impact Score: 2.9 | Exploitability Score: 10
VMScore: 445
Vector: AV:N/AC:L/Au:N/C:N/I:N/A:P

Vulnerability Summary

A vulnerability in ISC DHCP could allow an unauthenticated, remote malicious user to cause a denial of service (DoS) condition on a targeted system. The vulnerability is due to improper bounds checking by the affected software when processing DHCP options. An attacker could exploit this vulnerability by persuading a targeted user on an DHCP client system to send a request packet to a malicious DHCP server. Once the malicious DHCP server receives the request, the attacker could send a response to the request containing crafted DHCP options. An exploit could trigger a buffer overflow condition in the dhclient service of the targeted system causing the system to crash, resulting in a DoS condition. ISC.org has confirmed the vulnerability and released software updates.

Vulnerability Trend

Affected Products

Vendor Product Versions
IscDhcp4.1-esv, 4.1.0, 4.1.1, 4.1.2, 4.2.0, 4.2.1, 4.2.2, 4.2.3, 4.2.4, 4.2.5, 4.2.6, 4.2.7, 4.3.0, 4.3.1, 4.3.2, 4.3.3, 4.3.5, 4.4.0

Vendor Advisories

Synopsis Important: dhcp security update Type/Severity Security Advisory: Important Topic An update for dhcp is now available for Red Hat Enterprise Linux 7Red Hat Product Security has rated this update as having a security impact of Important A Common Vulnerability Scoring System (CVSS) base score, which ...
Synopsis Important: dhcp security update Type/Severity Security Advisory: Important Topic An update for dhcp is now available for Red Hat Enterprise Linux 6Red Hat Product Security has rated this update as having a security impact of Important A Common Vulnerability Scoring System (CVSS) base score, which ...
Several security issues were fixed in DHCP ...
Several security issues were fixed in DHCP ...
Debian Bug report logs - #891785 isc-dhcp: CVE-2018-5733: A malicious client can overflow a reference counter in ISC dhcpd Package: src:isc-dhcp; Maintainer for src:isc-dhcp is Debian ISC DHCP Maintainers <isc-dhcp@packagesdebianorg>; Reported by: Salvatore Bonaccorso <carnil@debianorg> Date: Wed, 28 Feb 2018 20:42 ...
Several vulnerabilities have been discovered in the ISC DHCP client, relay and server The Common Vulnerabilities and Exposures project identifies the following issues: CVE-2017-3144 It was discovered that the DHCP server does not properly clean up closed OMAPI connections, which can lead to exhaustion of the pool of socket descriptors ...
Impact: Important Public Date: 2018-02-28 CWE: CWE-119 Bugzilla: 1549960: CVE-2018-5732 dhcp: Buffer ov ...
Debian Bug report logs - #891786 isc-dhcp: CVE-2018-5732: A specially constructed response from a malicious server can cause a buffer overflow in dhclient Package: src:isc-dhcp; Maintainer for src:isc-dhcp is Debian ISC DHCP Maintainers <isc-dhcp@packagesdebianorg>; Reported by: Salvatore Bonaccorso <carnil@debianorg&gt ...
Debian Bug report logs - #887413 isc-dhcp: CVE-2017-3144: dhcp: omapi code doesn't free socket descriptors when empty message is received allowing denial-of-service Package: src:isc-dhcp; Maintainer for src:isc-dhcp is Debian ISC DHCP Maintainers <isc-dhcp@packagesdebianorg>; Reported by: Salvatore Bonaccorso <carnil@deb ...
Arch Linux Security Advisory ASA-201803-3 ========================================= Severity: High Date : 2018-03-05 CVE-ID : CVE-2018-5732 Package : dhclient Type : denial of service Remote : Yes Link : securityarchlinuxorg/AVG-648 Summary ======= The package dhclient before version 441-1 is vulnerable to denial of servic ...
Buffer overflow in dhclient possibly allowing code execution triggered by malicious serverAn out-of-bound memory access flaw was found in the way dhclient processed a DHCP response packet A malicious DHCP server could potentially use this flaw to crash dhclient processes running on DHCP client machines via a crafted DHCP response packet (CVE-2018 ...
An out-of-bound memory access flaw was found in the way dhclient processed a DHCP response packet A malicious DHCP server could potentially use this flaw to crash dhclient processes running on DHCP client machines via a crafted DHCP response packet ...
A vulnerability in DHCP affects IBM SAN Volume Controller, IBM Storwize V7000, V5000, V3700 and V3500, IBM Spectrum Virtualize Software, IBM Spectrum Virtualize for Public Cloud and IBM FlashSystem V9000 and 9100 family products DHCP can be used by the product for the assignment of service IP addresses ...
Buffer overflow in dhclient possibly allowing code execution triggered by malicious serverAn out-of-bound memory access flaw was found in the way dhclient processed a DHCP response packet A malicious DHCP server could potentially use this flaw to crash dhclient processes running on DHCP client machines via a crafted DHCP response packet (CVE-2018 ...
Oracle Solaris Third Party Bulletin - April 2018 Description The Oracle Solaris Third Party Bulletin announces patches for one or more security vulnerabilities fixed in third party software that is included in Oracle Solaris distributions Starting January 20, 2015, Third Party Bulletins are released on the same day when Oracle Critical ...
Oracle Linux Bulletin - January 2018 Description The Oracle Linux Bulletin lists all CVEs that had been resolved and announced in Oracle Linux Security Advisories (ELSA) in the last one month prior to the release of the bulletin Oracle Linux Bulletins are published on the same day as Oracle Critical ...
Oracle VM Server for x86 Bulletin - January 2018 Description The Oracle VM Server for x86 Bulletin lists all CVEs that had been resolved and announced in Oracle VM Server for x86 Security Advisories (OVMSA) in the last one month prior to the release of the bulletin Oracle VM Server for x86 Bulletins are pub ...

Github Repositories

core-kit 12-prime branch Core-kit contains the core ebuilds for Funtoo Linux It is designed to be a part of the Funtoo Linux kits system The 12-prime branch of core-kit is currently marked as development branch Please use 10-prime for production systems, not this branch The -prime suffix indicates that the eventual goal is for this kit branch to reach production-quality