FreeBSD.dhclient.DHCP.Option.Heap.Overflow
Description
This indicates an attack attempt against a Heap Overflow Vulnerability in FreeBSD.
The vulnerability is due to an insufficient validation when the vulnerable software handles a malformed DHCP response. A remote attacker on the same network segment as the victim may be able to exploit this to execute arbitrary code within the context of the application or cause denial of service conditions, via crafted DHCP responses.
Affected Products
FreeBSD 12.1-STABLE prior to r365010
FreeBSD 11.4-STABLE prior to r365011
FreeBSD 12.1-RELEASE prior to p9
FreeBSD 11.4-RELEASE prior to p3
FreeBSD 11.3-RELEASE prior to p13
Impact
System Compromise: Remote attackers can gain control of vulnerable systems.
Recommended Actions
Refer to the vendor's advisory for updates:
https://www.freebsd.org/security/advisories/FreeBSD-SA-20:26.dhclient.asc
Telemetry
Coverage
IPS (Regular DB) | |
IPS (Extended DB) |