// For flags

CVE-2011-0997

dhclient: insufficient sanitization of certain DHCP response values

Severity Score

7.5
*CVSS v2

Exploit Likelihood

*EPSS

Affected Versions

*CPE

Public Exploits

1
*Multiple Sources

Exploited in Wild

-
*KEV

Decision

-
*SSVC
Descriptions

dhclient in ISC DHCP 3.0.x through 4.2.x before 4.2.1-P1, 3.1-ESV before 3.1-ESV-R1, and 4.1-ESV before 4.1-ESV-R2 allows remote attackers to execute arbitrary commands via shell metacharacters in a hostname obtained from a DHCP message, as demonstrated by a hostname that is provided to dhclient-script.

dhclient en ISC DHCP 3.0.x hasta la versión 4.2.x en versiones anteriores a 4.2.1-P1, 3.1-ESV en versiones anteriores a 3.1-ESV-R1 y 4.1-ESV en versiones anteriores a 4.1-ESV-R2 permite a atacantes remotos ejecutar comandos arbitrarios a través de metacaracteres shell en un nombre de anfitrión obtenido de un mensaje DHCP, como es demostrado por un nombre de anfitrión dado por dhclient-script.

*Credits: N/A
CVSS Scores
Attack Vector
Network
Attack Complexity
Low
Authentication
None
Confidentiality
Partial
Integrity
Partial
Availability
Partial
Attack Vector
Adjacent
Attack Complexity
Medium
Authentication
None
Confidentiality
Complete
Integrity
Complete
Availability
Complete
* Common Vulnerability Scoring System
SSVC
  • Decision:-
Exploitation
-
Automatable
-
Tech. Impact
-
* Organization's Worst-case Scenario
Timeline
  • 2011-02-14 CVE Reserved
  • 2011-04-07 CVE Published
  • 2024-08-06 CVE Updated
  • 2024-08-06 First Exploit
  • 2024-09-03 EPSS Updated
  • ---------- Exploited in Wild
  • ---------- KEV Due Date
CWE
  • CWE-20: Improper Input Validation
  • CWE-78: Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection')
CAPEC
References (29)
URL Tag Source
http://kb.juniper.net/InfoCenter/index?page=content&id=JSA10761 Third Party Advisory
http://secunia.com/advisories/44037 Third Party Advisory
http://secunia.com/advisories/44048 Third Party Advisory
http://secunia.com/advisories/44089 Third Party Advisory
http://secunia.com/advisories/44090 Third Party Advisory
http://secunia.com/advisories/44103 Third Party Advisory
http://secunia.com/advisories/44127 Third Party Advisory
http://secunia.com/advisories/44180 Third Party Advisory
http://securitytracker.com/id?1025300 Third Party Advisory
http://www.kb.cert.org/vuls/id/107886 Third Party Advisory
http://www.osvdb.org/71493 Broken Link
http://www.securityfocus.com/bid/47176 Third Party Advisory
https://exchange.xforce.ibmcloud.com/vulnerabilities/66580 Third Party Advisory
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A12812 Signature
URL Date SRC
https://www.exploit-db.com/exploits/37623 2024-08-06
URL Date SRC
https://bugzilla.redhat.com/show_bug.cgi?id=689832 2011-05-31
https://www.isc.org/software/dhcp/advisories/cve-2011-0997 2020-04-01
URL Date SRC
http://lists.fedoraproject.org/pipermail/package-announce/2011-April/057888.html 2020-04-01
http://lists.fedoraproject.org/pipermail/package-announce/2011-April/058279.html 2020-04-01
http://marc.info/?l=bugtraq&m=133226187115472&w=2 2020-04-01
http://security.gentoo.org/glsa/glsa-201301-06.xml 2020-04-01
http://slackware.com/security/viewer.php?l=slackware-security&y=2011&m=slackware-security.593345 2020-04-01
http://www.debian.org/security/2011/dsa-2216 2020-04-01
http://www.debian.org/security/2011/dsa-2217 2020-04-01
http://www.mandriva.com/security/advisories?name=MDVSA-2011:073 2020-04-01
http://www.redhat.com/support/errata/RHSA-2011-0428.html 2020-04-01
http://www.redhat.com/support/errata/RHSA-2011-0840.html 2020-04-01
http://www.ubuntu.com/usn/USN-1108-1 2020-04-01
https://access.redhat.com/security/cve/CVE-2011-0997 2011-05-31
Affected Vendors, Products, and Versions
Vendor Product Version Other Status
Vendor Product Version Other Status <-- --> Vendor Product Version Other Status
Isc
Search vendor "Isc"
 Dhcp
Search vendor "Isc" for product "Dhcp"
 3.0
Search vendor "Isc" for product "Dhcp" and version "3.0"
-
Affected
Isc
Search vendor "Isc"
 Dhcp
Search vendor "Isc" for product "Dhcp"
 3.0.1
Search vendor "Isc" for product "Dhcp" and version "3.0.1"
-
Affected
Isc
Search vendor "Isc"
 Dhcp
Search vendor "Isc" for product "Dhcp"
 3.0.1
Search vendor "Isc" for product "Dhcp" and version "3.0.1"
rc1
Affected
Isc
Search vendor "Isc"
 Dhcp
Search vendor "Isc" for product "Dhcp"
 3.0.1
Search vendor "Isc" for product "Dhcp" and version "3.0.1"
rc10
Affected
Isc
Search vendor "Isc"
 Dhcp
Search vendor "Isc" for product "Dhcp"
 3.0.1
Search vendor "Isc" for product "Dhcp" and version "3.0.1"
rc11
Affected
Isc
Search vendor "Isc"
 Dhcp
Search vendor "Isc" for product "Dhcp"
 3.0.1
Search vendor "Isc" for product "Dhcp" and version "3.0.1"
rc12
Affected
Isc
Search vendor "Isc"
 Dhcp
Search vendor "Isc" for product "Dhcp"
 3.0.1
Search vendor "Isc" for product "Dhcp" and version "3.0.1"
rc13
Affected
Isc
Search vendor "Isc"
 Dhcp
Search vendor "Isc" for product "Dhcp"
 3.0.1
Search vendor "Isc" for product "Dhcp" and version "3.0.1"
rc14
Affected
Isc
Search vendor "Isc"
 Dhcp
Search vendor "Isc" for product "Dhcp"
 3.0.1
Search vendor "Isc" for product "Dhcp" and version "3.0.1"
rc2
Affected
Isc
Search vendor "Isc"
 Dhcp
Search vendor "Isc" for product "Dhcp"
 3.0.1
Search vendor "Isc" for product "Dhcp" and version "3.0.1"
rc5
Affected
Isc
Search vendor "Isc"
 Dhcp
Search vendor "Isc" for product "Dhcp"
 3.0.1
Search vendor "Isc" for product "Dhcp" and version "3.0.1"
rc6
Affected
Isc
Search vendor "Isc"
 Dhcp
Search vendor "Isc" for product "Dhcp"
 3.0.1
Search vendor "Isc" for product "Dhcp" and version "3.0.1"
rc7
Affected
Isc
Search vendor "Isc"
 Dhcp
Search vendor "Isc" for product "Dhcp"
 3.0.1
Search vendor "Isc" for product "Dhcp" and version "3.0.1"
rc8
Affected
Isc
Search vendor "Isc"
 Dhcp
Search vendor "Isc" for product "Dhcp"
 3.0.1
Search vendor "Isc" for product "Dhcp" and version "3.0.1"
rc9
Affected
Isc
Search vendor "Isc"
 Dhcp
Search vendor "Isc" for product "Dhcp"
 3.0.2
Search vendor "Isc" for product "Dhcp" and version "3.0.2"
-
Affected
Isc
Search vendor "Isc"
 Dhcp
Search vendor "Isc" for product "Dhcp"
 3.0.2
Search vendor "Isc" for product "Dhcp" and version "3.0.2"
b1
Affected
Isc
Search vendor "Isc"
 Dhcp
Search vendor "Isc" for product "Dhcp"
 3.0.2
Search vendor "Isc" for product "Dhcp" and version "3.0.2"
rc1
Affected
Isc
Search vendor "Isc"
 Dhcp
Search vendor "Isc" for product "Dhcp"
 3.0.2
Search vendor "Isc" for product "Dhcp" and version "3.0.2"
rc2
Affected
Isc
Search vendor "Isc"
 Dhcp
Search vendor "Isc" for product "Dhcp"
 3.0.2
Search vendor "Isc" for product "Dhcp" and version "3.0.2"
rc3
Affected
Isc
Search vendor "Isc"
 Dhcp
Search vendor "Isc" for product "Dhcp"
 3.0.3
Search vendor "Isc" for product "Dhcp" and version "3.0.3"
-
Affected
Isc
Search vendor "Isc"
 Dhcp
Search vendor "Isc" for product "Dhcp"
 3.0.3
Search vendor "Isc" for product "Dhcp" and version "3.0.3"
b1
Affected
Isc
Search vendor "Isc"
 Dhcp
Search vendor "Isc" for product "Dhcp"
 3.0.3
Search vendor "Isc" for product "Dhcp" and version "3.0.3"
b2
Affected
Isc
Search vendor "Isc"
 Dhcp
Search vendor "Isc" for product "Dhcp"
 3.0.3
Search vendor "Isc" for product "Dhcp" and version "3.0.3"
b3
Affected
Isc
Search vendor "Isc"
 Dhcp
Search vendor "Isc" for product "Dhcp"
 3.0.4
Search vendor "Isc" for product "Dhcp" and version "3.0.4"
-
Affected
Isc
Search vendor "Isc"
 Dhcp
Search vendor "Isc" for product "Dhcp"
 3.0.4
Search vendor "Isc" for product "Dhcp" and version "3.0.4"
b1
Affected
Isc
Search vendor "Isc"
 Dhcp
Search vendor "Isc" for product "Dhcp"
 3.0.4
Search vendor "Isc" for product "Dhcp" and version "3.0.4"
b2
Affected
Isc
Search vendor "Isc"
 Dhcp
Search vendor "Isc" for product "Dhcp"
 3.0.4
Search vendor "Isc" for product "Dhcp" and version "3.0.4"
b3
Affected
Isc
Search vendor "Isc"
 Dhcp
Search vendor "Isc" for product "Dhcp"
 3.0.4
Search vendor "Isc" for product "Dhcp" and version "3.0.4"
rc1
Affected
Isc
Search vendor "Isc"
 Dhcp
Search vendor "Isc" for product "Dhcp"
 3.0.5
Search vendor "Isc" for product "Dhcp" and version "3.0.5"
-
Affected
Isc
Search vendor "Isc"
 Dhcp
Search vendor "Isc" for product "Dhcp"
 3.0.5
Search vendor "Isc" for product "Dhcp" and version "3.0.5"
rc1
Affected
Isc
Search vendor "Isc"
 Dhcp
Search vendor "Isc" for product "Dhcp"
 3.0.6
Search vendor "Isc" for product "Dhcp" and version "3.0.6"
rc1
Affected
Isc
Search vendor "Isc"
 Dhcp
Search vendor "Isc" for product "Dhcp"
 3.1-esv
Search vendor "Isc" for product "Dhcp" and version "3.1-esv"
-
Affected
Isc
Search vendor "Isc"
 Dhcp
Search vendor "Isc" for product "Dhcp"
 3.1.0
Search vendor "Isc" for product "Dhcp" and version "3.1.0"
-
Affected
Isc
Search vendor "Isc"
 Dhcp
Search vendor "Isc" for product "Dhcp"
 3.1.0
Search vendor "Isc" for product "Dhcp" and version "3.1.0"
a1
Affected
Isc
Search vendor "Isc"
 Dhcp
Search vendor "Isc" for product "Dhcp"
 3.1.0
Search vendor "Isc" for product "Dhcp" and version "3.1.0"
a2
Affected
Isc
Search vendor "Isc"
 Dhcp
Search vendor "Isc" for product "Dhcp"
 3.1.0
Search vendor "Isc" for product "Dhcp" and version "3.1.0"
a3
Affected
Isc
Search vendor "Isc"
 Dhcp
Search vendor "Isc" for product "Dhcp"
 3.1.0
Search vendor "Isc" for product "Dhcp" and version "3.1.0"
b1
Affected
Isc
Search vendor "Isc"
 Dhcp
Search vendor "Isc" for product "Dhcp"
 3.1.0
Search vendor "Isc" for product "Dhcp" and version "3.1.0"
b2
Affected
Isc
Search vendor "Isc"
 Dhcp
Search vendor "Isc" for product "Dhcp"
 3.1.0
Search vendor "Isc" for product "Dhcp" and version "3.1.0"
rc1
Affected
Isc
Search vendor "Isc"
 Dhcp
Search vendor "Isc" for product "Dhcp"
 3.1.1
Search vendor "Isc" for product "Dhcp" and version "3.1.1"
rc1
Affected
Isc
Search vendor "Isc"
 Dhcp
Search vendor "Isc" for product "Dhcp"
 3.1.1
Search vendor "Isc" for product "Dhcp" and version "3.1.1"
rc2
Affected
Isc
Search vendor "Isc"
 Dhcp
Search vendor "Isc" for product "Dhcp"
 3.1.2
Search vendor "Isc" for product "Dhcp" and version "3.1.2"
-
Affected
Isc
Search vendor "Isc"
 Dhcp
Search vendor "Isc" for product "Dhcp"
 3.1.2
Search vendor "Isc" for product "Dhcp" and version "3.1.2"
b1
Affected
Isc
Search vendor "Isc"
 Dhcp
Search vendor "Isc" for product "Dhcp"
 3.1.2
Search vendor "Isc" for product "Dhcp" and version "3.1.2"
rc1
Affected
Isc
Search vendor "Isc"
 Dhcp
Search vendor "Isc" for product "Dhcp"
 3.1.3
Search vendor "Isc" for product "Dhcp" and version "3.1.3"
-
Affected
Isc
Search vendor "Isc"
 Dhcp
Search vendor "Isc" for product "Dhcp"
 3.1.3
Search vendor "Isc" for product "Dhcp" and version "3.1.3"
b1
Affected
Isc
Search vendor "Isc"
 Dhcp
Search vendor "Isc" for product "Dhcp"
 3.1.3
Search vendor "Isc" for product "Dhcp" and version "3.1.3"
rc1
Affected
Isc
Search vendor "Isc"
 Dhcp
Search vendor "Isc" for product "Dhcp"
 4.1-esv
Search vendor "Isc" for product "Dhcp" and version "4.1-esv"
-
Affected
Isc
Search vendor "Isc"
 Dhcp
Search vendor "Isc" for product "Dhcp"
 4.1-esv
Search vendor "Isc" for product "Dhcp" and version "4.1-esv"
rc1
Affected
Isc
Search vendor "Isc"
 Dhcp
Search vendor "Isc" for product "Dhcp"
 4.2.0
Search vendor "Isc" for product "Dhcp" and version "4.2.0"
-
Affected
Isc
Search vendor "Isc"
 Dhcp
Search vendor "Isc" for product "Dhcp"
 4.2.0
Search vendor "Isc" for product "Dhcp" and version "4.2.0"
a1
Affected
Isc
Search vendor "Isc"
 Dhcp
Search vendor "Isc" for product "Dhcp"
 4.2.0
Search vendor "Isc" for product "Dhcp" and version "4.2.0"
a2
Affected
Isc
Search vendor "Isc"
 Dhcp
Search vendor "Isc" for product "Dhcp"
 4.2.0
Search vendor "Isc" for product "Dhcp" and version "4.2.0"
b1
Affected
Isc
Search vendor "Isc"
 Dhcp
Search vendor "Isc" for product "Dhcp"
 4.2.0
Search vendor "Isc" for product "Dhcp" and version "4.2.0"
b2
Affected
Isc
Search vendor "Isc"
 Dhcp
Search vendor "Isc" for product "Dhcp"
 4.2.0
Search vendor "Isc" for product "Dhcp" and version "4.2.0"
p1
Affected
Isc
Search vendor "Isc"
 Dhcp
Search vendor "Isc" for product "Dhcp"
 4.2.0
Search vendor "Isc" for product "Dhcp" and version "4.2.0"
rc1
Affected
Isc
Search vendor "Isc"
 Dhcp
Search vendor "Isc" for product "Dhcp"
 4.2.1
Search vendor "Isc" for product "Dhcp" and version "4.2.1"
-
Affected
Isc
Search vendor "Isc"
 Dhcp
Search vendor "Isc" for product "Dhcp"
 4.2.1
Search vendor "Isc" for product "Dhcp" and version "4.2.1"
b1
Affected
Isc
Search vendor "Isc"
 Dhcp
Search vendor "Isc" for product "Dhcp"
 4.2.1
Search vendor "Isc" for product "Dhcp" and version "4.2.1"
rc1
Affected
Debian
Search vendor "Debian"
 Debian Linux
Search vendor "Debian" for product "Debian Linux"
 5.0
Search vendor "Debian" for product "Debian Linux" and version "5.0"
-
Affected
Debian
Search vendor "Debian"
 Debian Linux
Search vendor "Debian" for product "Debian Linux"
 6.0
Search vendor "Debian" for product "Debian Linux" and version "6.0"
-
Affected
Debian
Search vendor "Debian"
 Debian Linux
Search vendor "Debian" for product "Debian Linux"
 7.0
Search vendor "Debian" for product "Debian Linux" and version "7.0"
-
Affected
Canonical
Search vendor "Canonical"
 Ubuntu Linux
Search vendor "Canonical" for product "Ubuntu Linux"
 6.06
Search vendor "Canonical" for product "Ubuntu Linux" and version "6.06"
lts
Affected
Canonical
Search vendor "Canonical"
 Ubuntu Linux
Search vendor "Canonical" for product "Ubuntu Linux"
 8.04
Search vendor "Canonical" for product "Ubuntu Linux" and version "8.04"
lts
Affected
Canonical
Search vendor "Canonical"
 Ubuntu Linux
Search vendor "Canonical" for product "Ubuntu Linux"
 9.10
Search vendor "Canonical" for product "Ubuntu Linux" and version "9.10"
-
Affected
Canonical
Search vendor "Canonical"
 Ubuntu Linux
Search vendor "Canonical" for product "Ubuntu Linux"
 10.04
Search vendor "Canonical" for product "Ubuntu Linux" and version "10.04"
lts
Affected
Canonical
Search vendor "Canonical"
 Ubuntu Linux
Search vendor "Canonical" for product "Ubuntu Linux"
 10.10
Search vendor "Canonical" for product "Ubuntu Linux" and version "10.10"
-
Affected