DHCP: Invalid Option Length

This protocol anomaly triggers when it detects a DHCP option that has an invalid length. RFC-1533 and RFC-1497 specify standard lengths for DHCP options.

Extended Description

A DHCP datagram in which the options field contains a data-size octet that does not match the allowable ranges indicated by RFC 1533 specifications constitutes a protocol anomaly. Detection of this condition could indicate a network configuration error, or that an attempt to inject malformed DHCP datagrams is underway.

Short Name
DHCP:OPT:INV-OPT-LEN
Severity
Major
Recommended
False
Recommended Action
None
Category
DHCP
Keywords
CVE-2017-10986
Release Date
04/22/2003
Supported Platforms

srx-branch-12.3

srx-19.3

srx-branch-19.3

vsrx3bsd-19.2

srx-branch-19.4

vsrx-19.4

mx-12.3

mx-19.4

vmx-19.4

mx-19.3

vsrx3bsd-19.4

srx-19.4

vsrx-12.3

vmx-19.3

vsrx-19.2

srx-12.3

Sigpack Version
3324
False Positive
Unknown
CVSS Score

5.0

Found a potential security threat?