Dnsmasq.DHCP6.Packets.Handling.Information.Disclosure

description-logoDescription

This indicates an attack attempt to exploit an Information Disclosure vulnerability in Dnsmasq.
The vulnerability is due to an improper boundary check in the application when handling an overly large request. A remote attacker can exploit this to gain access to sensitive information, leading to possible ASLR bypass.

affected-products-logoAffected Products

Dnsmasq versions prior to 2.78

Impact logoImpact

Information Disclosure: Remote attackers can gain sensitive information from vulnerable systems.

recomended-action-logoRecommended Actions

Upgrade to the latest version available from the website.
http://www.thekelleys.org.uk/dnsmasq/

Telemetry logoTelemetry

Coverage

IPS (Regular DB)
IPS (Extended DB)