Slackware Advisory SSA:2009-195-01 Dhcp Network Vulnerability

Summary

The remote host is missing an update as announced via advisory SSA:2009-195-01.

Solution

https://secure1.securityspace.com/smysecure/catid.html?in=SSA:2009-195-01

Insight

New dhcp packages are available for Slackware 8.1, 9.0, 9.1, 10.0, 10.1, 10.2, 11.0, 12.0, 12.1, 12.2, and -current to fix a security issue with dhclient. Note that dhclient is not the default DHCP client in Slackware's networking scripts, dhcpcd is. However, if you use dhclient on a network where someone could deploy a hostile DHCP server, you should upgrade to the new package. More details about this issue may be found in the Common Vulnerabilities and Exposures (CVE) database: http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-0692

Severity

Classification

CVE CVE-2009-0692

CVSS	Base Score: 10.0 AV:N/AC:L/Au:N/C:C/I:C/A:C

Related Vulnerabilities

Slackware Advisory SSA:2004-299-01 apache, mod_ssl, php
Slackware Advisory SSA:2003-236-01 GDM security update
Slackware Advisory SSA:2004-049-02 metamail security update
Slackware Advisory SSA:2005-310-03 lynx
Slackware Advisory SSA:2006-209-01 Apache httpd

Slackware Advisory SSA:2009-195-01 dhcp

Take action and discover your vulnerabilities