Release DateAug 08, 2011 |
Severityhigh |
ImpactSystem Compromise: Remote attackers can run arbitrary commands on vulnerable systems. |
DescriptionThis indicates an attack attempt against a Command Injection vulnerability in ISC DHCP.The vulnerability is caused by an error when the vulnerable software handles a malicious DHCP Request. |
Affected ProductsISC DHCP dhclient Prior to 3.1-ESV-R1ISC DHCP dhclient Prior to 4.1-ESV-R2 ISC DHCP dhclient Prior to 4.2.1-P1 |
Recommended ActionsUpgrade to the latest version. |
Coverage IPS
VCM |
Common Vulnerabilities and Exposures (CVE)CVE-2011-0997 |
Reference/shttp://www.securityfocus.com/bid/47176 (BugTraq)http://www.vupen.com/english/advisories/2011/0879 |
