Full Disclosure mailing list archives
-advisory- % x Thu Mar 16 14:27:45 EST 2006 x % Off-by-one in ISC DHCP
From: ASB <abaker () gmail com>
Date: Thu, 16 Mar 2006 19:27:48 +0000 (GMT)
-advisory- % x Thu Mar 16 14:27:45 EST 2006 x % Off-by-one in ISC DHCP 8==========================D~~~~~~~~~~ I. BACKGROUND There is no background. 8==========================D~~~~~~~~~~ II. DESCRIPTION It is possible to make ISC DHCP crash by the use of malformed input. 8==========================D~~~~~~~~~~ III. WORKAROUND There are no identified workarounds on this vulnerability. 8==========================D~~~~~~~~~~ IV. VENDOR RESPONSE ISC DHCP is presented no explanation on this problem indentified. 8==========================D~~~~~~~~~~ V. CVE INFORMATION The Common Vulnerabilities and Exposures (CVE) project has assigned the name CVE-2006-356572 to this issue 8==========================D~~~~~~~~~~ APPENDIX A VENDOR INFORMATION http://www.isc.org/index.pl?/sw/dhcp/ 8==========================D~~~~~~~~~~ APPENDIX B REFERENCES RFC 2898 _______________________________________________ Full-Disclosure - We believe in it. Charter: http://lists.grok.org.uk/full-disclosure-charter.html Hosted and sponsored by Secunia - http://secunia.com/
Current thread:
- -advisory- % x Thu Mar 16 14:27:45 EST 2006 x % Off-by-one in ISC DHCP ASB (Mar 16)