mirror of
https://github.com/CVEProject/cvelist.git
synced 2025-08-04 08:44:25 +00:00
192 lines
7.0 KiB
JSON
192 lines
7.0 KiB
JSON
{
|
|
"CVE_data_meta": {
|
|
"ASSIGNER": "cve@mitre.org",
|
|
"ID": "CVE-2007-5365",
|
|
"STATE": "PUBLIC"
|
|
},
|
|
"affects": {
|
|
"vendor": {
|
|
"vendor_data": [
|
|
{
|
|
"product": {
|
|
"product_data": [
|
|
{
|
|
"product_name": "n/a",
|
|
"version": {
|
|
"version_data": [
|
|
{
|
|
"version_value": "n/a"
|
|
}
|
|
]
|
|
}
|
|
}
|
|
]
|
|
},
|
|
"vendor_name": "n/a"
|
|
}
|
|
]
|
|
}
|
|
},
|
|
"data_format": "MITRE",
|
|
"data_type": "CVE",
|
|
"data_version": "4.0",
|
|
"description": {
|
|
"description_data": [
|
|
{
|
|
"lang": "eng",
|
|
"value": "Stack-based buffer overflow in the cons_options function in options.c in dhcpd in OpenBSD 4.0 through 4.2, and some other dhcpd implementations based on ISC dhcp-2, allows remote attackers to execute arbitrary code or cause a denial of service (daemon crash) via a DHCP request specifying a maximum message size smaller than the minimum IP MTU."
|
|
}
|
|
]
|
|
},
|
|
"problemtype": {
|
|
"problemtype_data": [
|
|
{
|
|
"description": [
|
|
{
|
|
"lang": "eng",
|
|
"value": "n/a"
|
|
}
|
|
]
|
|
}
|
|
]
|
|
},
|
|
"references": {
|
|
"reference_data": [
|
|
{
|
|
"name": "27338",
|
|
"refsource": "SECUNIA",
|
|
"url": "http://secunia.com/advisories/27338"
|
|
},
|
|
{
|
|
"name": "27350",
|
|
"refsource": "SECUNIA",
|
|
"url": "http://secunia.com/advisories/27350"
|
|
},
|
|
{
|
|
"name": "ADV-2008-3088",
|
|
"refsource": "VUPEN",
|
|
"url": "http://www.vupen.com/english/advisories/2008/3088"
|
|
},
|
|
{
|
|
"name": "4601",
|
|
"refsource": "EXPLOIT-DB",
|
|
"url": "https://www.exploit-db.com/exploits/4601"
|
|
},
|
|
{
|
|
"name": "http://www.openbsd.org/cgi-bin/cvsweb/src/usr.sbin/dhcpd/options.c",
|
|
"refsource": "CONFIRM",
|
|
"url": "http://www.openbsd.org/cgi-bin/cvsweb/src/usr.sbin/dhcpd/options.c"
|
|
},
|
|
{
|
|
"name": "http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=446354",
|
|
"refsource": "CONFIRM",
|
|
"url": "http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=446354"
|
|
},
|
|
{
|
|
"name": "[4.2] 20071008 001: SECURITY FIX: October 8, 2007",
|
|
"refsource": "OPENBSD",
|
|
"url": "http://www.openbsd.org/errata42.html#001_dhcpd"
|
|
},
|
|
{
|
|
"name": "25984",
|
|
"refsource": "BID",
|
|
"url": "http://www.securityfocus.com/bid/25984"
|
|
},
|
|
{
|
|
"name": "20071102 DoS Exploit for DHCPd bug (Bugtraq ID 25984 ; CVE-2007-5365)",
|
|
"refsource": "BUGTRAQ",
|
|
"url": "http://www.securityfocus.com/archive/1/483230/100/100/threaded"
|
|
},
|
|
{
|
|
"name": "openbsd-dhcp-bo(37045)",
|
|
"refsource": "XF",
|
|
"url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/37045"
|
|
},
|
|
{
|
|
"name": "RHSA-2007:0970",
|
|
"refsource": "REDHAT",
|
|
"url": "http://www.redhat.com/support/errata/RHSA-2007-0970.html"
|
|
},
|
|
{
|
|
"name": "DSA-1388",
|
|
"refsource": "DEBIAN",
|
|
"url": "http://www.debian.org/security/2007/dsa-1388"
|
|
},
|
|
{
|
|
"name": "http://www.coresecurity.com/index.php5?module=ContentMod&action=item&id=1962",
|
|
"refsource": "MISC",
|
|
"url": "http://www.coresecurity.com/index.php5?module=ContentMod&action=item&id=1962"
|
|
},
|
|
{
|
|
"name": "USN-531-1",
|
|
"refsource": "UBUNTU",
|
|
"url": "http://www.ubuntu.com/usn/usn-531-1"
|
|
},
|
|
{
|
|
"name": "oval:org.mitre.oval:def:5817",
|
|
"refsource": "OVAL",
|
|
"url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A5817"
|
|
},
|
|
{
|
|
"name": "USN-531-2",
|
|
"refsource": "UBUNTU",
|
|
"url": "http://www.ubuntu.com/usn/usn-531-2"
|
|
},
|
|
{
|
|
"name": "27160",
|
|
"refsource": "SECUNIA",
|
|
"url": "http://secunia.com/advisories/27160"
|
|
},
|
|
{
|
|
"name": "20071011 CORE-2007-0928: Stack-based buffer overflow vulnerability in OpenBSDâ??s DHCP server",
|
|
"refsource": "BUGTRAQ",
|
|
"url": "http://www.securityfocus.com/archive/1/482085/100/100/threaded"
|
|
},
|
|
{
|
|
"name": "27273",
|
|
"refsource": "SECUNIA",
|
|
"url": "http://secunia.com/advisories/27273"
|
|
},
|
|
{
|
|
"name": "[4.0] 20071008 016: SECURITY FIX: October 8, 2007",
|
|
"refsource": "OPENBSD",
|
|
"url": "http://www.openbsd.org/errata40.html#016_dhcpd"
|
|
},
|
|
{
|
|
"name": "243806",
|
|
"refsource": "SUNALERT",
|
|
"url": "http://sunsolve.sun.com/search/document.do?assetkey=1-26-243806-1"
|
|
},
|
|
{
|
|
"name": "32668",
|
|
"refsource": "SECUNIA",
|
|
"url": "http://secunia.com/advisories/32668"
|
|
},
|
|
{
|
|
"name": "[4.1] 20071008 010: SECURITY FIX: October 8, 2007",
|
|
"refsource": "OPENBSD",
|
|
"url": "http://www.openbsd.org/errata41.html#010_dhcpd"
|
|
},
|
|
{
|
|
"name": "http://sunsolve.sun.com/search/document.do?assetkey=1-21-109077-21-1",
|
|
"refsource": "CONFIRM",
|
|
"url": "http://sunsolve.sun.com/search/document.do?assetkey=1-21-109077-21-1"
|
|
},
|
|
{
|
|
"name": "1018794",
|
|
"refsource": "SECTRACK",
|
|
"url": "http://www.securitytracker.com/id?1018794"
|
|
},
|
|
{
|
|
"name": "1021157",
|
|
"refsource": "SECTRACK",
|
|
"url": "http://securitytracker.com/id?1021157"
|
|
},
|
|
{
|
|
"name": "32213",
|
|
"refsource": "BID",
|
|
"url": "http://www.securityfocus.com/bid/32213"
|
|
}
|
|
]
|
|
}
|
|
} |