Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2012-2152

Overview

Vulnerability Score 7.5 7.5
CVE Id CVE-2012-2152
Last Modified 06 Nov 2012 12:11:08
Published 25 Jul 2012 05:55:01
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact PARTIAL PARTIAL
Availability Impact PARTIAL PARTIAL
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2012-2152

Summary

Stack-based buffer overflow in the get_packet method in socket.c in dhcpcd 3.2.3 allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a long packet.

Vulnerable Systems

Application

  • Roy Marples Dhcpcd 3.2.3


References

MISC - https://bugzilla.novell.com/show_bug.cgi?id=760334

BID - 53354

MLIST - [oss-security] 20120502 Re: CVE Request: dhcpcd 3.2.3 remote stack overflow / denial of service

MLIST - [oss-security] 20120502 CVE Request: dhcpcd 3.2.3 remote stack overflow / denial of service

DEBIAN - DSA-2498

Related Patches

Novell SUSE 2012:6301 dhcpcd security update for SLE 11 SP1 i586

Novell SUSE 2012:6301 dhcpcd security update for SLE 11 SP1 x86_64


Last Updated: 27 May 2016 10:58:24