full-disclosure - -ADVISORY- ~ [Thu Mar 16 03:09:47 EST 2006] ~ Local Privilege Escalation Vulnerability in ISC DHCP

lists.openwall.net		lists / announce owl-users owl-dev john-users john-dev passwdqc-users yescrypt popa3d-users / oss-security kernel-hardening musl sabotage tlsify passwords / crypt-dev xvendor / Bugtraq Full-Disclosure linux-kernel linux-netdev linux-ext4 linux-hardening linux-cve-announce PHC
Open Source and information security mailing list archives

Hash Suite: Windows password security audit tool. GUI, reports in PDF.

[<prev] [next>] [day] [month] [year] [list]

Date: Thu Mar 16 08:26:54 2006
From: mmaiffret at eeye.com (mmaiffret@...e.com)
Subject: -ADVISORY- ~ [Thu Mar 16 03:09:47 EST 2006] ~
	Local Privilege Escalation Vulnerability in ISC DHCP




-ADVISORY- ~ [Thu Mar 16 03:09:47 EST 2006] ~ Local Privilege Escalation Vulnerability in ISC DHCP




++++++++++++++++++++++++++++++++++++++
o/ 卍 BACKGROUND
++++++++++++++++++++++++++++++++++++++
There has been no background commentary about this issue in question.
++++++++++++++++++++++++++++++++++++++
卍 \o DESCRIPTION
++++++++++++++++++++++++++++++++++++++
ISC DHCP incorrectly validates user input, making privilege escalation possible.

++++++++++++++++++++++++++++++++++++++
o/ 卍 CVE INFORMATION
++++++++++++++++++++++++++++++++++++++
The Common Vulnerabilities and Exposures (CVE) project has assigned the name CVE-2006-437287 to this issue



++++++++++++++++++++++++++++++++++++++
CONTACT
++++++++++++++++++++++++++++++++++++++
Marc Maiffret lolville@...m.la
1-888-565-9428

CSFA SSP-MPA GHTQ CAP SSCP