ISC DHCP 3.0.3
Approved changes feed: RSS · Atom
cpe:2.3:a:isc:dhcp:3.0.3:-:*:*:*:*:*:*
part: a version: 3.0.3 update: -
| Vendor | Isc (4a2f2b37-98b6-5702-822d-72afcd17d050) |
|---|---|
| Product | Dhcp (4e92e1a9-a8b0-5696-8d39-7119e87ecd86) |
| Edition | * |
| Language | * |
| Software edition | * |
| Target software | * |
| Target hardware | * |
| Other | * |
| Notes | Imported from NVD CPE 2.0 feed |
PURL mappings
| PURL | Source | Last updated |
|---|---|---|
pkg:github/isc-projects/dhcp |
purl2cpe | 2026-06-01 10:15:10.661059 |
Vulnerability references
| Identifier | cpeApplicability | Submitted | db.gcve.eu details | Rationale |
|---|---|---|---|---|
CVE:CVE-2011-0997 |
vulnerable | 2026-06-08 04:56:40.541095 |
Details available
dhclient in ISC DHCP 3.0.x through 4.2.x before 4.2.1-P1, 3.1-ESV before 3.1-ESV-R1, and 4.1-ESV before 4.1-ESV-R2 allows remote attackers to execute arbitrary commands via shell metacharacters in a hostname obtained from a DHCP message, as demonstrated by a hostname that is provided to dhclient-script.
Published: 2011-04-08T15:00:00.000Z
Updated: 2024-08-06T22:14:27.265Z |
Imported from gcve-enriched-dumps CVE data |
Contribute
You can submit an edit proposal for this CPE entry or suggest a related product/vendor addition using the action button above.