Juniper Networks
Solutions
Products & Services
Company
Partners
Support
Education

Signature Detail

Security Intelligence Center
Signatures
Print

Short Name

 DHCP:EXPLOIT:MSG-TOO-SHORT

Severity

 Critical

Recommended

 Yes

Recommended Action

 Drop

Category

 DHCP

Release Date

 2003/04/22

Update Number

 1213

Supported Platforms

 idp-4.0+, isg-3.0+, j-series-9.5+, mx-9.4+, srx-9.2+, srx-branch-9.4+, vsrx-12.1+

DHCP: Message Too Short


This protocol anomaly is an incomplete DHCP message that was sent as an UDP datagram. This can be a network error or exploit attempt.

Extended Description

VMware Workstation's DHCP server is prone to multiple remote code-execution issues, including a stack-based integer-underflow issue, a stack-based buffer-overflow issue, and an unspecified vulnerability. An attacker can exploit these issues to execute arbitrary code with the privileges of the user running the affected application. Versions prior to VMware Workstation 6.0.1 Build 55017 are vulnerable.

Affected Products

  • Gentoo Linux
  • Mandriva Corporate Server 3.0.0
  • Mandriva Corporate Server 3.0.0 X86 64
  • Mandriva Corporate Server 4.0
  • Mandriva Corporate Server 4.0.0 X86 64
  • Mandriva Linux Mandrake 2008.0
  • Mandriva Linux Mandrake 2008.0 X86 64
  • Mandriva Linux Mandrake 2008.1
  • Mandriva Linux Mandrake 2008.1 X86 64
  • Mandriva Multi Network Firewall 2.0.0
  • rPath rPath Linux 1
  • rPath rPath Linux 2
  • SuSE openSUSE 10.3
  • SuSE openSUSE 11.0
  • SuSE SUSE Linux Enterprise Server 10
  • SuSE SUSE Linux Enterprise Server 9
  • Ubuntu Ubuntu Linux 6.06 LTS Amd64
  • Ubuntu Ubuntu Linux 6.06 LTS I386
  • Ubuntu Ubuntu Linux 6.06 LTS Powerpc
  • Ubuntu Ubuntu Linux 6.06 LTS Sparc
  • Ubuntu Ubuntu Linux 6.10 Amd64
  • Ubuntu Ubuntu Linux 6.10 I386
  • Ubuntu Ubuntu Linux 6.10 Powerpc
  • Ubuntu Ubuntu Linux 6.10 Sparc
  • Ubuntu Ubuntu Linux 7.04 Amd64
  • Ubuntu Ubuntu Linux 7.04 I386
  • Ubuntu Ubuntu Linux 7.04 Powerpc
  • Ubuntu Ubuntu Linux 7.04 Sparc
  • VMWare ACE 1.0.3
  • VMWare ACE 2.0.0
  • VMWare Player 1.0.4
  • VMWare Player 2.0.0
  • VMWare Server 1.0.3
  • VMWare Workstation 3.4.0
  • VMWare Workstation 4.0.0
  • VMWare Workstation 4.0.1
  • VMWare Workstation 4.0.2
  • VMWare Workstation 4.5.2
  • VMWare Workstation 5.0.0 .0 build-13124
  • VMWare Workstation 5.5.1
  • VMWare Workstation 5.5.1 Build 19175
  • VMWare Workstation 5.5.3 Build 34685
  • VMWare Workstation 5.5.3 Build 42958
  • VMWare Workstation 5.5.4
  • VMWare Workstation 5.5.4 Build 44386
  • VMWare Workstation 6.0.0

References

  • CVE: CVE-2007-0063
  • URL: http://www.ietf.org/rfc/rfc2131.txt
  • URL: http://www.ietf.org/rfc/rfc2132.txt

Site Map
RSS Feeds
Careers
Accessibility
Feedback
Privacy Policy
Legal Notices
Copyright © 1999-2010 Juniper Networks, Inc. All rights reserved.
Help
|
My Account
|
Log Out