Description
ISC DHCP client program dhclient allows remote attackers to execute arbitrary commands via shell metacharacters.
Affected products
- ISC / dhcp_client2.0 – 2.0
- ISC / dhcp_client3.0b1 – 3.0b1
References
- VENDOR_ADVISORYhttp://www.debian.org/security/2000/20000628
- VENDOR_ADVISORYftp://ftp.NetBSD.ORG/pub/NetBSD/misc/security/advisories/NetBSD-SA2000-008.txt.asc
- MISChttp://archives.neohapsis.com/archives/bugtraq/2000-07/0014.html
- MISChttp://archives.neohapsis.com/archives/bugtraq/2000-06/0247.html
- MISChttps://exchange.xforce.ibmcloud.com/vulnerabilities/4772
- VENDOR_ADVISORYftp://ftp.FreeBSD.org/pub/FreeBSD/CERT/advisories/FreeBSD-SA-00:34.dhclient.asc
- VENDOR_ADVISORYhttp://www.novell.com/linux/security/advisories/suse_security_announce_56.html
- MISChttp://www.securityfocus.com/bid/1388