DHCP: Dhcpcd Packet Size Stack Buffer Overflow
This signature detects attempts to exploit a known vulnerability in dhcpcd. It is due to insufficient validation on packets size supplied by DHCP clients. A remote attacker impersonating a DHCP server on the adjacent network could exploit this by sending a crafted packet to the target host. Successful exploitation would allow an attacker to inject arbitrary code into the DHCP Client.
Extended Description
dhcpcd is prone to a remote stack-based buffer-overflow vulnerability because it fails to properly bounds-check user-supplied input before copying it into a fixed-length buffer. Successfully exploiting this issue allows a remote attacker to execute arbitrary code in the context of the application. Failed exploits will result in denial-of-service condition.
Affected Products
Dhcpcd dhcpcd
Short Name
DHCP:OPT:DHCPD-PKT-SIZE-BO
Severity
Major
Recommended
False
Recommended Action
Drop
Category
DHCP
Keywords
Buffer CVE-2012-2152 Dhcpcd Overflow Packet Size Stack bid:53354
Release Date
01/09/2013
Supported Platforms
srx-branch-19.3
vsrx3bsd-19.2
srx-19.4
vsrx3bsd-19.4
srx-branch-19.4
vsrx-19.4
vsrx-19.2
srx-19.3
srx-branch-12.3
mx-12.3
mx-19.4
vmx-19.4
mx-19.3
vsrx-12.3
vmx-19.3
srx-12.3
Sigpack Version
3602
False Positive
Unknown
Vendors
Debian
Dhcpcd
CVSS Score
7.5