Juniper Networks
Solutions
Products & Services
Company
Partners
Support
Education

Signature Detail

Security Intelligence Center
Signatures
Print

This site is deprecated. Please CLICK HERE for latest updates

Short Name

 DHCP:RQST:CVE-2018-17161-BO

Severity

 Major

Recommended

 Yes

Recommended Action

 Drop

Category

 DHCP

Keywords

 FreeBSD bootpd Stack Buffer Overflow

Release Date

 2019/02/25

Update Number

 3145

Supported Platforms

 idp-4.0+, isg-3.0+, j-series-9.5+, mx-11.4+, srx-12.1+, srx-branch-12.1+, vmx-17.4+, vsrx-12.1+, vsrx3bsd-18.2+

DHCP: FreeBSD bootpd Stack Buffer Overflow


This signature detects attempts to exploit a known vulnerability in the bootpd utility.Successful exploitation can result in remote code execution or denial of service conditions.

Extended Description

In FreeBSD before 11.2-STABLE(r348229), 11.2-RELEASE-p7, 12.0-STABLE(r342228), and 12.0-RELEASE-p1, insufficient validation of network-provided data in bootpd may make it possible for a malicious attacker to craft a bootp packet which could cause a stack buffer overflow. It is possible that the buffer overflow could lead to a Denial of Service or remote code execution.

Affected Products

  • Freebsd freebsd 11.2
  • Freebsd freebsd 12.0

References

  • BugTraq: 106292
  • CVE: CVE-2018-17161
  • URL: https://www.freebsd.org/security/advisories/freebsd-sa-18:15.bootpd.asc

Site Map
RSS Feeds
Careers
Accessibility
Feedback
Privacy Policy
Legal Notices
Copyright © 1999-2010 Juniper Networks, Inc. All rights reserved.
Help
|
My Account
|
Log Out