Intrusion Prevention

OpenBSD.DHCP.Remote.DoS

Description

This indicates an attack attempt against denial-of-service vulnerability in OpenBSD DHCP.
The vulnerability is due to the software's inability to check the bounds of user-supplied input. A successful exploit causes corruption of a stack-based buffer and may allow remote attackers to cause a denial-of-service condition.

Affected Products

OpenBSD 3.x
OpenBSD 4.0
OpenBSD 4.1
OpenBSD 4.2

Impact

Denial of service.

Recommended Actions

Apply the appropriate patch.
OpenBSD 4.0:
ftp://ftp.openbsd.org/pub/OpenBSD/patches/4.0/common/016_dhcpd.patch
OpenBSD 4.1:
ftp://ftp.openbsd.org/pub/OpenBSD/patches/4.1/common/010_dhcpd.patch
OpenBSD 4.2:
ftp://ftp.openbsd.org/pub/OpenBSD/patches/4.2/common/001_dhcpd.patch

CVE References

CVE-2007-5365