← back
CVE-2011-1930

CVE-2011-1930

EPSS 20.5%
In klibc 1.5.20 and 1.5.21, the DHCP options written by ipconfig to /tmp/net-$DEVICE.conf are not properly escaped. This may allow a remote attacker to send a specially crafted DHCP reply which could execute arbitrary code with the privileges of any process which sources DHCP options.
Affected products
klibc · klibc
public PoCs found1
exploitdbwww.exploit-db.com/exploits/35785unverified
⚠ Public resources, to assess the exposure of systems you control or are authorized to test. Test only with authorization.

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →
References
https://access.redhat.com/security/cve/cve-2011-1930http://security.gentoo.org/glsa/glsa-201309-21.xmlhttps://security-tracker.debian.org/tracker/CVE-2011-1930http://www.openwall.com/lists/oss-security/2012/05/22/12http://www.securityfocus.com/bid/47924