CVE-2009-0692: CVE-2009-0692

Get alerts for future matching vulnerabilitiesLog in to subscribe

I. Basic Information for CVE-2009-0692

Vulnerability Information

Have questions about the vulnerability? See if Shenlong's analysis helps!

Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.

Vulnerability Title

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Description

Stack-based buffer overflow in the script_write_params method in client/dhclient.c in ISC DHCP dhclient 4.1 before 4.1.0p1, 4.0 before 4.0.1p1, 3.1 before 3.1.2p1, 3.0, and 2.0 allows remote DHCP servers to execute arbitrary code via a crafted subnet-mask option.

Source: NVD (National Vulnerability Database)

CVSS Information

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Type

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Title

ISC DHCP dhclient.c script_write_params()函数栈溢出漏洞

Source: CNNVD (China National Vulnerability Database)

Vulnerability Description

动态主机配置协议(DHCP)允许IP网络上的各个设备获得各自的网络配置信息，包括IP地址、子网掩码和广播地址。 ISC DHCP客户端(dhclient)的client/dhclient.c文件中的script_write_params()函数在使用服务器端所提供的租赁地址和子网掩码生成子网数字时没有执行长度检查。如果恶意的DHCP服务器返回了超长的子网掩码选项的话，就可以触发栈溢出，导致客户端崩溃或以root用户权限执行任意指令。

Source: CNNVD (China National Vulnerability Database)

CVSS Information

N/A

Source: CNNVD (China National Vulnerability Database)

Vulnerability Type

N/A

Source: CNNVD (China National Vulnerability Database)

Affected Products

Vendor	Product	Affected Versions	CPE	Subscribe
-	n/a	n/a	-

II. Public POCs for CVE-2009-0692

#	POC Description	Source Link	Shenlong Link

AI-Generated POCPremium

No public POC found.

III. Intelligence Information for CVE-2009-0692

Please Login to view more intelligence information

https://bugzilla.redhat.com/show_bug.cgi?id=507717x_refsource_CONFIRM
https://www.isc.org/node/468x_refsource_CONFIRM
https://www.isc.org/downloadables/12x_refsource_CONFIRM
http://www.osvdb.org/55819vdb-entryx_refsource_OSVDB
http://secunia.com/advisories/40551third-party-advisoryx_refsource_SECUNIA
http://secunia.com/advisories/36457third-party-advisoryx_refsource_SECUNIA
http://secunia.com/advisories/37342third-party-advisoryx_refsource_SECUNIA
http://www.securityfocus.com/bid/35668vdb-entryx_refsource_BID
http://secunia.com/advisories/35785third-party-advisoryx_refsource_SECUNIA
http://secunia.com/advisories/35850third-party-advisoryx_refsource_SECUNIA
http://secunia.com/advisories/35829third-party-advisoryx_refsource_SECUNIA
http://secunia.com/advisories/35849third-party-advisoryx_refsource_SECUNIA
http://secunia.com/advisories/35841third-party-advisoryx_refsource_SECUNIA
http://secunia.com/advisories/35831third-party-advisoryx_refsource_SECUNIA
http://secunia.com/advisories/35880third-party-advisoryx_refsource_SECUNIA
http://secunia.com/advisories/35851third-party-advisoryx_refsource_SECUNIA
http://secunia.com/advisories/35830third-party-advisoryx_refsource_SECUNIA
http://www.securitytracker.com/id?1022548vdb-entryx_refsource_SECTRACK
http://www.debian.org/security/2009/dsa-1833vendor-advisoryx_refsource_DEBIAN
http://www.kb.cert.org/vuls/id/410676third-party-advisoryx_refsource_CERT-VN
http://www.ubuntu.com/usn/usn-803-1vendor-advisoryx_refsource_UBUNTU
http://itrc.hp.com/service/cki/docDisplay.do?docId=emr_na-c02286083vendor-advisoryx_refsource_HP
http://www.vupen.com/english/advisories/2010/1796vdb-entryx_refsource_VUPEN
http://www.mandriva.com/security/advisories?name=MDVSA-2009:151vendor-advisoryx_refsource_MANDRIVA
http://www.redhat.com/support/errata/RHSA-2009-1136.htmlvendor-advisoryx_refsource_REDHAT
http://www.redhat.com/support/errata/RHSA-2009-1154.htmlvendor-advisoryx_refsource_REDHAT
http://security.gentoo.org/glsa/glsa-200907-12.xmlvendor-advisoryx_refsource_GENTOO
http://slackware.com/security/viewer.php?l=slackware-security&y=2009&m=slackware-security.561471vendor-advisoryx_refsource_SLACKWARE
http://lists.opensuse.org/opensuse-security-announce/2009-07/msg00003.htmlvendor-advisoryx_refsource_SUSE
https://www.redhat.com/archives/fedora-package-announce/2009-August/msg01177.htmlvendor-advisoryx_refsource_FEDORA
https://www.redhat.com/archives/fedora-package-announce/2009-November/msg00340.htmlvendor-advisoryx_refsource_FEDORA
http://ftp.netbsd.org/pub/NetBSD/security/advisories/NetBSD-SA2009-010.txt.ascvendor-advisoryx_refsource_NETBSD
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A5941vdb-entrysignaturex_refsource_OVAL
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10758vdb-entrysignaturex_refsource_OVAL
https://nvd.nist.gov/vuln/detail/CVE-2009-0692

IV. Related Vulnerabilities

Same product: n/a

Same vendor: n/a

V. Comments for CVE-2009-0692

No comments yet

Goal Reached Thanks to every supporter — we hit 100%!

I. Basic Information for CVE-2009-0692

Vulnerability Information

Vulnerability Title

Vulnerability Description

CVSS Information

Vulnerability Type

Vulnerability Title

Vulnerability Description

CVSS Information

Vulnerability Type

Affected Products

II. Public POCs for CVE-2009-0692

III. Intelligence Information for CVE-2009-0692

IV. Related Vulnerabilities

V. Comments for CVE-2009-0692

Leave a comment