Signature Detail
This site is deprecated. Please CLICK HERE for latest updates
Short Name |
DHCP:SERVER:ISC-CMD-INJ |
|---|---|
Severity |
Major |
Recommended |
No |
Recommended Action |
Drop |
Category |
DHCP |
Keywords |
ISC Network Configuration Script Command Injection |
Release Date |
2011/06/20 |
Update Number |
1942 |
Supported Platforms |
idp-4.0+, isg-3.4+, j-series-9.5+, mx-11.4+, srx-12.1+, srx-branch-12.1+, vmx-17.4+, vsrx-12.1+, vsrx3bsd-18.2+ |
DHCP: ISC Network Configuration Script Command Injection
This signature detects attempts to exploit a known vulnerability against ISC DHCP server. It is due to insufficient validation of responses sent by ISC DHCP server. A successful attack can lead to arbitrary command injection on the DHCP client.
Extended Description
The ISC DHCP client 'dhclient' is prone to a remote code-execution vulnerability because it fails to properly escape certain shell meta-characters from DHCP server responses. A remote attacker can exploit this issue through a rogue DHCP server. Successfully exploiting this issue allows a remote attacker to execute arbitrary code with superuser privileges, resulting in a complete compromise of the affected computer.
Affected Products
- Apple airport_express_base_station_with_802.11n Firmware 7.4.1
- Apple airport_express_base_station_with_802.11n Firmware 7.5.2
- Apple time_capsule Firmware 7.4.1
- Apple time_capsule Firmware 7.4.2
- Apple time_capsule Firmware 7.5
- Apple time_capsule Firmware 7.5.2
- Apple time_capsule
- Avaya aura_conferencing 6.0
- Avaya aura_conferencing 6.0.0 Standard
- Avaya aura_conferencing 6.0 SP1 Standard
- Avaya aura_conferencing 6.0 Standard
- Avaya aura_presence_services 6.0
- Avaya aura_presence_services 6.1
- Avaya aura_sip_enablement_services 5.2.1
- Avaya aura_system_manager 5.2
- Avaya aura_system_manager 6.0
- Avaya aura_system_manager 6.0 SP1
- Avaya aura_system_manager 6.1
- Avaya aura_system_manager 6.1.1
- Avaya aura_system_manager 6.1 Sp1
- Avaya aura_system_manager 6.1 SP2
- Avaya aura_system_platform 1.1
- Avaya aura_system_platform 6.0
- Avaya aura_system_platform 6.0 SP2
- Avaya aura_system_platform 6.0 SP3
- Avaya ip_office_application_server 6.0
- Avaya ip_office_application_server 6.1
- Avaya iq 5
- Avaya iq 5.1
- Avaya iq 5.2
- Avaya meeting_exchange 5.1
- Avaya meeting_exchange 5.1 SP1
- Avaya meeting_exchange 5.2
- Avaya meeting_exchange 5.2 SP1
- Avaya meeting_exchange 5.2 SP2
- Avaya messaging_storage_server 5.0
- Avaya messaging_storage_server 5.1
- Avaya messaging_storage_server 5.1 SP1
- Avaya messaging_storage_server 5.1 SP2
- Avaya messaging_storage_server 5.2
- Avaya messaging_storage_server 5.2.2
- Avaya messaging_storage_server 5.2.8
- Avaya messaging_storage_server 5.2 SP1
- Avaya messaging_storage_server 5.2 SP2
- Avaya messaging_storage_server 5.2 SP3
- Citrix xenserver 5.0 Update 3
- Citrix xenserver 5.5
- Citrix xenserver 5.6
- Citrix xenserver 5.6 Common Criteria
- Citrix xenserver 5.6 Feature Pack 1
- Citrix xenserver 5.6 SP2
- Debian linux 5.0
- Debian linux 5.0 Alpha
- Debian linux 5.0 Amd64
- Debian linux 5.0 Arm
- Debian linux 5.0 Armel
- Debian linux 5.0 Hppa
- Debian linux 5.0 Ia-32
- Debian linux 5.0 Ia-64
- Debian linux 5.0 M68k
- Debian linux 5.0 Mips
- Debian linux 5.0 Mipsel
- Debian linux 5.0 Powerpc
- Debian linux 5.0 S/390
- Debian linux 5.0 Sparc
- Hp insight_control_for_linux_(ic-linux) 7.0
- Isc dhcp_client 3.0
- Isc dhcp_client 3.0.0 B1
- Isc dhcp_client 3.0.0 B1pl14
- Isc dhcp_client 3.0.0 B1pl17
- Isc dhcp_client 3.1.2P1
- Isc dhcp_client 4.0
- Isc dhcp_client 4.0.1P1
- Isc dhcp_client 4.0.2-P1
- Isc dhcp_client 4.1
- Isc dhcp_client 4.1.0P1
- Isc dhcp_client 4.1.1-P1
- Isc dhcpd 3.0.0
- Isc dhcpd 3.0.0 B2pl23
- Isc dhcpd 3.0.0 B2pl9
- Isc dhcpd 3.0.0 Pl1
- Isc dhcpd 3.0.0 Pl2
- Isc dhcpd 3.0.0 Rc12
- Isc dhcpd 3.0.0 Rc4
- Isc dhcpd 3.0.1 Rc1
- Isc dhcpd 3.0.1 Rc10
- Isc dhcpd 3.0.1 Rc11
- Isc dhcpd 3.0.1 Rc12
- Isc dhcpd 3.0.1 Rc13
- Isc dhcpd 3.0.1 Rc14
- Isc dhcpd 3.0.1 Rc2
- Isc dhcpd 3.0.1 Rc3
- Isc dhcpd 3.0.1 Rc4
- Isc dhcpd 3.0.1 Rc5
- Isc dhcpd 3.0.1 Rc6
- Isc dhcpd 3.0.1 Rc7
- Isc dhcpd 3.0.1 Rc8
- Isc dhcpd 3.0.1 Rc9
- Isc dhcpd 3.0.2Rc1
- Isc dhcpd 3.0.4
- Isc dhcpd 3.0.5B1
- Isc dhcpd 3.1.1
- Isc dhcpd 4.0
- Isc dhcpd 4.0.1P1
- Isc dhcpd 4.0.2-P1
- Isc dhcpd 4.1
- Isc dhcpd 4.1.1
- Isc dhcpd 4.1.1-P1
- Mandriva corporate_server 4.0
- Mandriva corporate_server 4.0.0 X86 64
- Mandriva enterprise_server 5
- Mandriva enterprise_server 5 X86 64
- Mandriva linux_mandrake 2009.0
- Mandriva linux_mandrake 2009.0 X86 64
- Mandriva linux_mandrake 2010.0
- Mandriva linux_mandrake 2010.0 X86 64
- Mandriva linux_mandrake 2010.1
- Mandriva linux_mandrake 2010.1 X86 64
- Netbsd netbsd 4.0
- Netbsd netbsd 4.0.1
- Netbsd netbsd 4.0.2
- Netbsd netbsd 4,0 Beta
- Netbsd netbsd 4.0 BETA2
- Netbsd netbsd 5.0
- Netbsd netbsd 5.0.1
- Netbsd netbsd 5.0.2
- Netbsd netbsd 5.0 RC3
- Netbsd netbsd 5.1
- Netbsd netbsd Current
- Pardus linux_2009
- Red_hat enterprise_linux 5 Server
- Red_hat enterprise_linux Desktop Version 4
- Red_hat enterprise_linux_as 3
- Red_hat enterprise_linux_as 4
- Red_hat enterprise_linux_desktop 5 Client
- Red_hat enterprise_linux_desktop 6
- Red_hat enterprise_linux_desktop_optional 6
- Red_hat enterprise_linux_desktop_workstation 5 Client
- Red_hat enterprise_linux_es 3
- Red_hat enterprise_linux_es 4
- Red_hat enterprise_linux_hpc_node 6
- Red_hat enterprise_linux_hpc_node_optional 6
- Red_hat enterprise_linux_server 6
- Red_hat enterprise_linux_server_optional 6
- Red_hat enterprise_linux_workstation 6
- Red_hat enterprise_linux_workstation_optional 6
- Red_hat enterprise_linux_ws 4
- Red_hat fedora 13
- Red_hat fedora 14
- Red_hat fedora 15
- Slackware linux 10.0.0
- Slackware linux 10.1.0
- Slackware linux 10.2.0
- Slackware linux 11.0
- Slackware linux 12.0
- Slackware linux 12.1
- Slackware linux 12.2
- Slackware linux 13.0
- Slackware linux 13.0 X86 64
- Slackware linux 13.1
- Slackware linux 13.1 X86 64
- Slackware linux 9.0.0
- Slackware linux 9.1.0
- Slackware linux -Current
- Slackware linux X86 64 -Current
- Suse novell_linux_pos 9
- Suse open-enterprise-server
- Suse opensuse 11.2
- Suse opensuse 11.3
- Suse opensuse 11.4
- Suse suse_linux_enterprise 10 SP2
- Suse suse_linux_enterprise 10 SP3
- Suse suse_linux_enterprise 10 SP4
- Suse suse_linux_enterprise 11 SP1
- Suse suse_linux_enterprise_server 9
- Ubuntu ubuntu_linux 10.04 Amd64
- Ubuntu ubuntu_linux 10.04 ARM
- Ubuntu ubuntu_linux 10.04 I386
- Ubuntu ubuntu_linux 10.04 LTS
- Ubuntu ubuntu_linux 10.04 Powerpc
- Ubuntu ubuntu_linux 10.04 Sparc
- Ubuntu ubuntu_linux 10.10 amd64
- Ubuntu ubuntu_linux 10.10 ARM
- Ubuntu ubuntu_linux 10.10 i386
- Ubuntu ubuntu_linux 10.10 powerpc
- Ubuntu ubuntu_linux 6.06 LTS Amd64
- Ubuntu ubuntu_linux 6.06 LTS I386
- Ubuntu ubuntu_linux 6.06 LTS Powerpc
- Ubuntu ubuntu_linux 6.06 LTS Sparc
- Ubuntu ubuntu_linux 8.04 LTS Amd64
- Ubuntu ubuntu_linux 8.04 LTS I386
- Ubuntu ubuntu_linux 8.04 LTS Lpia
- Ubuntu ubuntu_linux 8.04 LTS Powerpc
- Ubuntu ubuntu_linux 8.04 LTS Sparc
- Ubuntu ubuntu_linux 9.10
- Ubuntu ubuntu_linux 9.10 Amd64
- Ubuntu ubuntu_linux 9.10 ARM
- Ubuntu ubuntu_linux 9.10 I386
- Ubuntu ubuntu_linux 9.10 Lpia
- Ubuntu ubuntu_linux 9.10 Powerpc
- Ubuntu ubuntu_linux 9.10 Sparc
- Vmware esx 3.5
- Vmware esx 4.0
- Vmware esx 4.0
- Vmware esx 4.1
- Vmware esx_server 3.0.3
- Vmware esx_server 3.5
- Vmware esx_server 4.0
- Vmware esx_server 4.1
References
- BugTraq: 47176
- CVE: CVE-2011-0997