Remote Command Execution Vulnerability in ISC DHCP Client Program
CVE-2000-0585

Currently unrated

Key Information:

Vendor

Isc
Status
Dhcp Client
Vendor
CVE Published:
24 June 2000

What is CVE-2000-0585?

The ISC DHCP client program, specifically dhclient, is susceptible to a vulnerability that allows remote attackers to execute arbitrary commands through the use of shell metacharacters. This weakness can be exploited to gain unauthorized access to systems, potentially allowing remote users to execute code with the same privileges as the dhclient process, leading to significant security risks. Users of affected versions are strongly advised to update to the latest patched versions to mitigate this issue.

References

http://www.debian.org/security/2000/20000628
vendor-advisoryx_refsource_DEBIAN
ftp://ftp.NetBSD.ORG/pub/NetBSD/misc/security/advisories/...
vendor-advisoryx_refsource_NETBSD
http://archives.neohapsis.com/archives/bugtraq/2000-07/00...
mailing-listx_refsource_BUGTRAQ

EPSS Score

9% chance of being exploited in the next 30 days.

Timeline

  • Vulnerability Reserved

  • Vulnerability published

.