This site is deprecated. Please
CLICK HERE for latest updates
Short Name |
DHCP:ERROR:INV-HW-LEN
|
Severity |
Major
|
Recommended |
No
|
Category |
DHCP
|
Keywords |
MS04-42
|
Release Date |
2003/04/22
|
Update Number |
1213
|
Supported Platforms |
idp-4.0+, isg-3.0+, j-series-9.5+, mx-11.4+, srx-12.1+, srx-branch-12.1+, vmx-17.4+, vsrx-12.1+, vsrx3bsd-18.2+
|
DHCP: Invalid HW Length Error
This protocol anomaly is a DHCP message that has an invalid HW length. For Ethernet, the HW length should be 6 (the length of a MAC address).
Extended Description
Microsoft Windows DHCP server on NT 4 server platforms is reported susceptible to a remote buffer overflow vulnerability. This issue is due to insufficient bounds checking of user-supplied network data.
This vulnerability allows remote attackers to execute arbitrary code in the context of the affected service. The DHCP server is running with administrative privileges, allowing remote attackers to gain administrative access, or to crash the affected service, denying service to legitimate users. This may allow attackers to interrupt network services to an entire network.
It is noted that the service is not installed by default.
Affected Products
- Microsoft windows_nt 4.0
- Microsoft windows_nt 4.0 alpha
- Microsoft windows_nt 4.0 SP1
- Microsoft windows_nt 4.0 SP1 alpha
- Microsoft windows_nt 4.0 SP2
- Microsoft windows_nt 4.0 SP2 alpha
- Microsoft windows_nt 4.0 SP3
- Microsoft windows_nt 4.0 SP3 alpha
- Microsoft windows_nt 4.0 SP4
- Microsoft windows_nt 4.0 SP4 alpha
- Microsoft windows_nt 4.0 SP5
- Microsoft windows_nt 4.0 SP5 alpha
- Microsoft windows_nt 4.0 SP6
- Microsoft windows_nt 4.0 SP6a
- Microsoft windows_nt 4.0 SP6a alpha
- Microsoft windows_nt 4.0 SP6 alpha
- Microsoft windows_nt_enterprise_server 4.0
- Microsoft windows_nt_enterprise_server 4.0 SP1
- Microsoft windows_nt_enterprise_server 4.0 SP2
- Microsoft windows_nt_enterprise_server 4.0 SP3
- Microsoft windows_nt_enterprise_server 4.0 SP4
- Microsoft windows_nt_enterprise_server 4.0 SP5
- Microsoft windows_nt_enterprise_server 4.0 SP6
- Microsoft windows_nt_enterprise_server 4.0 SP6a
- Microsoft windows_nt_server 4.0
- Microsoft windows_nt_server 4.0 SP1
- Microsoft windows_nt_server 4.0 SP2
- Microsoft windows_nt_server 4.0 SP3
- Microsoft windows_nt_server 4.0 SP4
- Microsoft windows_nt_server 4.0 SP5
- Microsoft windows_nt_server 4.0 SP6
- Microsoft windows_nt_server 4.0 SP6a
- Microsoft windows_nt_terminal_server 4.0
- Microsoft windows_nt_terminal_server 4.0 alpha
- Microsoft windows_nt_terminal_server 4.0 SP1
- Microsoft windows_nt_terminal_server 4.0 SP2
- Microsoft windows_nt_terminal_server 4.0 SP3
- Microsoft windows_nt_terminal_server 4.0 SP4
- Microsoft windows_nt_terminal_server 4.0 SP5
- Microsoft windows_nt_terminal_server 4.0 SP6
- Microsoft windows_nt_terminal_server 4.0 SP6a
- Microsoft windows_nt_workstation 4.0
- Microsoft windows_nt_workstation 4.0 SP1
- Microsoft windows_nt_workstation 4.0 SP2
- Microsoft windows_nt_workstation 4.0 SP3
- Microsoft windows_nt_workstation 4.0 SP4
- Microsoft windows_nt_workstation 4.0 SP5
- Microsoft windows_nt_workstation 4.0 SP6
- Microsoft windows_nt_workstation 4.0 SP6a
References