CVE-2011-0997
Scores
EPSS
0.735medium73.5%
0%20%40%60%80%100%
Percentile: 73.5%
CVSS
7.9high2.0
0246810
CVSS Score: 7.9/10
All CVSS Scores
CVSS 2.0
7.9Vector: AV:A/AC:M/Au:N/C:C/I:C/A:C
Vector Breakdown
CVSS (Common Vulnerability Scoring System) vector provides detailed metrics about vulnerability characteristics
CVSS
Attack Vector
Adjacent Network (A)
Describes how the vulnerability is exploited
AV:A
Attack Complexity
Medium
Describes the conditions beyond the attacker's control
AC:M
Authentication
None (N)
Describes the level of privileges an attacker must possess
Au:N
Confidentiality Impact
Complete
Measures the impact to the confidentiality of information
C:C
Integrity Impact
Complete
Measures the impact to integrity of a successfully exploited vulnerability
I:C
Availability Impact
Complete
Measures the impact to the availability of the impacted component
A:C
Description
dhclient in ISC DHCP 3.0.x through 4.2.x before 4.2.1-P1, 3.1-ESV before 3.1-ESV-R1, and 4.1-ESV before 4.1-ESV-R2 allows remote attackers to execute arbitrary commands via shell metacharacters in a hostname obtained from a DHCP message, as demonstrated by a hostname that is provided to dhclient-script.
Scaner-VS 7 — a modern vulnerability management solution
Uses this database for vulnerability detection. High-speed search, cross-platform, advanced configuration audit, and flexible filtering. Suitable for organizations of any size.
Learn more about Scaner-VS 7Sources
debiannvdredhatubuntu
CWEs
CWE-20CWE-78
Related Vulnerabilities
Exploits
Vulnerable Software (11)
Type: Configuration
Product: dhcp
Operating System: rhel 3
Trait:
{ "fixed": "3.0.1-10.3_EL3"}
Source: redhat
Type: Configuration
Product: dhcp
Operating System: rhel 4
Trait:
{ "fixed": "3.0.1-67.el4"}
Source: redhat
Type: Configuration
Product: dhcp
Operating System: rhel 5
Trait:
{ "fixed": "3.0.5-23.el5_6.4"}
Source: redhat
Type: Configuration
Product: dhcp
Operating System: rhel 6
Trait:
{ "fixed": "4.1.1-12.P1.el6_0.4"}
Source: redhat
Type: Configuration
Product: dhcp3
Operating System: debian
Trait:
{ "unfixed": true}
Source: debian
Type: Configuration
Product: dhcp3
Operating System: ubuntu hardy 8.04
Trait:
{ "fixed": "3.0.6.dfsg-1ubuntu9.2"}
Source: ubuntu
Type: Configuration
Product: isc-dhcp
Operating System: debian
Trait:
{ "fixed": "4.1.1-P1-16.1"}
Source: debian
Type: Configuration
Vendor: *
Product: debian_linux
Operating System: * * *
Trait:
{ "cpe_match": [ { "cpe23uri": "cpe:2.3:o:debian:debian_linux:5.0:*:*:*:*:*:*:*", "vulnerable": true }, { "cpe23uri": "cpe:2.3:o:debian:debian_linux:6.0:*:*:*:*:*:*:*",...
{ "cpe_match": [ { "cpe23uri": "cpe:2.3:o:debian:debian_linux:5.0:*:*:*:*:*:*:*", "vulnerable": true }, { "cpe23uri": "cpe:2.3:o:debian:debian_linux:6.0:*:*:*:*:*:*:*", "vulnerable": true }, { "cpe23uri": "cpe:2.3:o:debian:debian_linux:7.0:*:*:*:*:*:*:*", "vulnerable": true } ], "operator": "OR"}
Source: nvd
Type: Configuration
Vendor: *
Product: dhcp
Operating System: * * *
Trait:
{ "cpe_match": [ { "cpe23uri": "cpe:2.3:a:isc:dhcp:3.0:*:*:*:*:*:*:*", "vulnerable": true }, { "cpe23uri": "cpe:2.3:a:isc:dhcp:3.0.1:-:*:*:*:*:*:*", "vulnerable":...
{ "cpe_match": [ { "cpe23uri": "cpe:2.3:a:isc:dhcp:3.0:*:*:*:*:*:*:*", "vulnerable": true }, { "cpe23uri": "cpe:2.3:a:isc:dhcp:3.0.1:-:*:*:*:*:*:*", "vulnerable": true }, { "cpe23uri": "cpe:2.3:a:isc:dhcp:3.0.1:rc1:*:*:*:*:*:*", "vulnerable": true }, { "cpe23uri": "cpe:2.3:a:isc:dhcp:3.0.1:rc10:*:*:*:*:*:*", "vulnerable": true }, { "cpe23uri": "cpe:2.3:a:isc:dhcp:3.0.1:rc11:*:*:*:*:*:*", "vulnerable": true }, { "cpe23uri": "cpe:2.3:a:isc:dhcp:3.0.1:rc12:*:*:*:*:*:*", "vulnerable": true }, { "cpe23uri": "cpe:2.3:a:isc:dhcp:3.0.1:rc13:*:*:*:*:*:*", "vulnerable": true }, { "cpe23uri": "cpe:2.3:a:isc:dhcp:3.0.1:rc14:*:*:*:*:*:*", "vulnerable": true }, { "cpe23uri": "cpe:2.3:a:isc:dhcp:3.0.1:rc2:*:*:*:*:*:*", "vulnerable": true }, { "cpe23uri": "cpe:2.3:a:isc:dhcp:3.0.1:rc5:*:*:*:*:*:*", "vulnerable": true }, { "cpe23uri": "cpe:2.3:a:isc:dhcp:3.0.1:rc6:*:*:*:*:*:*", "vulnerable": true }, { "cpe23uri": "cpe:2.3:a:isc:dhcp:3.0.1:rc7:*:*:*:*:*:*", "vulnerable": true }, { "cpe23uri": "cpe:2.3:a:isc:dhcp:3.0.1:rc8:*:*:*:*:*:*", "vulnerable": true }, { "cpe23uri": "cpe:2.3:a:isc:dhcp:3.0.1:rc9:*:*:*:*:*:*", "vulnerable": true }, { "cpe23uri": "cpe:2.3:a:isc:dhcp:3.0.2:-:*:*:*:*:*:*", "vulnerable": true }, { "cpe23uri": "cpe:2.3:a:isc:dhcp:3.0.2:b1:*:*:*:*:*:*", "vulnerable": true }, { "cpe23uri": "cpe:2.3:a:isc:dhcp:3.0.2:rc1:*:*:*:*:*:*", "vulnerable": true }, { "cpe23uri": "cpe:2.3:a:isc:dhcp:3.0.2:rc2:*:*:*:*:*:*", "vulnerable": true }, { "cpe23uri": "cpe:2.3:a:isc:dhcp:3.0.2:rc3:*:*:*:*:*:*", "vulnerable": true }, { "cpe23uri": "cpe:2.3:a:isc:dhcp:3.0.3:-:*:*:*:*:*:*", "vulnerable": true }, { "cpe23uri": "cpe:2.3:a:isc:dhcp:3.0.3:b1:*:*:*:*:*:*", "vulnerable": true }, { "cpe23uri": "cpe:2.3:a:isc:dhcp:3.0.3:b2:*:*:*:*:*:*", "vulnerable": true }, { "cpe23uri": "cpe:2.3:a:isc:dhcp:3.0.3:b3:*:*:*:*:*:*", "vulnerable": true }, { "cpe23uri": "cpe:2.3:a:isc:dhcp:3.0.4:-:*:*:*:*:*:*", "vulnerable": true }, { "cpe23uri": "cpe:2.3:a:isc:dhcp:3.0.4:b1:*:*:*:*:*:*", "vulnerable": true }, { "cpe23uri": "cpe:2.3:a:isc:dhcp:3.0.4:b2:*:*:*:*:*:*", "vulnerable": true }, { "cpe23uri": "cpe:2.3:a:isc:dhcp:3.0.4:b3:*:*:*:*:*:*", "vulnerable": true }, { "cpe23uri": "cpe:2.3:a:isc:dhcp:3.0.4:rc1:*:*:*:*:*:*", "vulnerable": true }, { "cpe23uri": "cpe:2.3:a:isc:dhcp:3.0.5:-:*:*:*:*:*:*", "vulnerable": true }, { "cpe23uri": "cpe:2.3:a:isc:dhcp:3.0.5:rc1:*:*:*:*:*:*", "vulnerable": true }, { "cpe23uri": "cpe:2.3:a:isc:dhcp:3.0.6:rc1:*:*:*:*:*:*", "vulnerable": true }, { "cpe23uri": "cpe:2.3:a:isc:dhcp:3.1-esv:*:*:*:*:*:*:*", "vulnerable": true }, { "cpe23uri": "cpe:2.3:a:isc:dhcp:3.1.0:-:*:*:*:*:*:*", "vulnerable": true }, { "cpe23uri": "cpe:2.3:a:isc:dhcp:3.1.0:a1:*:*:*:*:*:*", "vulnerable": true }, { "cpe23uri": "cpe:2.3:a:isc:dhcp:3.1.0:a2:*:*:*:*:*:*", "vulnerable": true }, { "cpe23uri": "cpe:2.3:a:isc:dhcp:3.1.0:a3:*:*:*:*:*:*", "vulnerable": true }, { "cpe23uri": "cpe:2.3:a:isc:dhcp:3.1.0:b1:*:*:*:*:*:*", "vulnerable": true }, { "cpe23uri": "cpe:2.3:a:isc:dhcp:3.1.0:b2:*:*:*:*:*:*", "vulnerable": true }, { "cpe23uri": "cpe:2.3:a:isc:dhcp:3.1.0:rc1:*:*:*:*:*:*", "vulnerable": true }, { "cpe23uri": "cpe:2.3:a:isc:dhcp:3.1.1:rc1:*:*:*:*:*:*", "vulnerable": true }, { "cpe23uri": "cpe:2.3:a:isc:dhcp:3.1.1:rc2:*:*:*:*:*:*", "vulnerable": true }, { "cpe23uri": "cpe:2.3:a:isc:dhcp:3.1.2:-:*:*:*:*:*:*", "vulnerable": true }, { "cpe23uri": "cpe:2.3:a:isc:dhcp:3.1.2:b1:*:*:*:*:*:*", "vulnerable": true }, { "cpe23uri": "cpe:2.3:a:isc:dhcp:3.1.2:rc1:*:*:*:*:*:*", "vulnerable": true }, { "cpe23uri": "cpe:2.3:a:isc:dhcp:3.1.3:-:*:*:*:*:*:*", "vulnerable": true }, { "cpe23uri": "cpe:2.3:a:isc:dhcp:3.1.3:b1:*:*:*:*:*:*", "vulnerable": true }, { "cpe23uri": "cpe:2.3:a:isc:dhcp:3.1.3:rc1:*:*:*:*:*:*", "vulnerable": true } ], "operator": "OR"}
Source: nvd
Type: Configuration
Vendor: *
Product: dhcp
Operating System: * * *
Trait:
{ "cpe_match": [ { "cpe23uri": "cpe:2.3:a:isc:dhcp:4.1-esv:-:*:*:*:*:*:*", "vulnerable": true }, { "cpe23uri": "cpe:2.3:a:isc:dhcp:4.1-esv:rc1:*:*:*:*:*:*", "vuln...
{ "cpe_match": [ { "cpe23uri": "cpe:2.3:a:isc:dhcp:4.1-esv:-:*:*:*:*:*:*", "vulnerable": true }, { "cpe23uri": "cpe:2.3:a:isc:dhcp:4.1-esv:rc1:*:*:*:*:*:*", "vulnerable": true }, { "cpe23uri": "cpe:2.3:a:isc:dhcp:4.2.0:-:*:*:*:*:*:*", "vulnerable": true }, { "cpe23uri": "cpe:2.3:a:isc:dhcp:4.2.0:a1:*:*:*:*:*:*", "vulnerable": true }, { "cpe23uri": "cpe:2.3:a:isc:dhcp:4.2.0:a2:*:*:*:*:*:*", "vulnerable": true }, { "cpe23uri": "cpe:2.3:a:isc:dhcp:4.2.0:b1:*:*:*:*:*:*", "vulnerable": true }, { "cpe23uri": "cpe:2.3:a:isc:dhcp:4.2.0:b2:*:*:*:*:*:*", "vulnerable": true }, { "cpe23uri": "cpe:2.3:a:isc:dhcp:4.2.0:p1:*:*:*:*:*:*", "vulnerable": true }, { "cpe23uri": "cpe:2.3:a:isc:dhcp:4.2.0:rc1:*:*:*:*:*:*", "vulnerable": true }, { "cpe23uri": "cpe:2.3:a:isc:dhcp:4.2.1:-:*:*:*:*:*:*", "vulnerable": true }, { "cpe23uri": "cpe:2.3:a:isc:dhcp:4.2.1:b1:*:*:*:*:*:*", "vulnerable": true }, { "cpe23uri": "cpe:2.3:a:isc:dhcp:4.2.1:rc1:*:*:*:*:*:*", "vulnerable": true } ], "operator": "OR"}
Source: nvd
Type: Configuration
Vendor: *
Product: ubuntu_linux
Operating System: * * *
Trait:
{ "cpe_match": [ { "cpe23uri": "cpe:2.3:o:canonical:ubuntu_linux:6.06:*:*:*:lts:*:*:*", "vulnerable": true }, { "cpe23uri": "cpe:2.3:o:canonical:ubuntu_linux:8.04:*:*:*...
{ "cpe_match": [ { "cpe23uri": "cpe:2.3:o:canonical:ubuntu_linux:6.06:*:*:*:lts:*:*:*", "vulnerable": true }, { "cpe23uri": "cpe:2.3:o:canonical:ubuntu_linux:8.04:*:*:*:lts:*:*:*", "vulnerable": true }, { "cpe23uri": "cpe:2.3:o:canonical:ubuntu_linux:9.10:*:*:*:*:*:*:*", "vulnerable": true }, { "cpe23uri": "cpe:2.3:o:canonical:ubuntu_linux:10.04:*:*:*:lts:*:*:*", "vulnerable": true }, { "cpe23uri": "cpe:2.3:o:canonical:ubuntu_linux:10.10:*:*:*:*:*:*:*", "vulnerable": true } ], "operator": "OR"}
Source: nvd
End of list