Dhcpcd Project : Security Vulnerabilities, CVEs, Published In 2015 (Denial of service)
The print_option function in dhcp-common.c in dhcpcd through 6.9.1, as used in dhcp.c in dhcpcd 5.x in Android before 5.1 and other products, misinterprets the return value of the snprintf function, which allows remote DHCP servers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted message.
Max CVSS
6.8
EPSS Score
0.34%
Published
2015-07-30
Updated
2017-09-21
The get_option function in dhcp.c in dhcpcd before 6.2.0, as used in dhcpcd 5.x in Android before 5.1 and other products, does not validate the relationship between length fields and the amount of data, which allows remote DHCP servers to execute arbitrary code or cause a denial of service (memory corruption) via a large length value of an option in a DHCPACK message.
Max CVSS
6.8
EPSS Score
1.22%
Published
2015-07-30
Updated
2017-09-21
2 vulnerabilities found