Vigil@nce: Dnsmasq, denial of service of DHCP
July 2008 by Vigil@nce
SYNTHESIS
An attacker can send a malicious DHCP packet in order to stop
Dnsmasq.
Gravity: 1/4
Consequences: denial of service of service
Provenance: LAN
Means of attack: 1 attack
Ability of attacker: technician (2/4)
Confidence: confirmed by the editor (5/5)
Diffusion of the vulnerable configuration: high (3/3)
Creation date: 15/07/2008
Identifier: VIGILANCE-VUL-7947
IMPACTED PRODUCTS
– Dnsmasq [confidential versions]
DESCRIPTION
The Dnsmasq program provides a DNS and DHCP server.
The DHCP protocol is used by a computer to obtain an IP address.
The computer can indicate the wished IP address, for example to
keep the previously obtained value.
However, if the client wishes an IP address located outside the
handled zone, Dnsmasq stops.
A network attacker can therefore create a denial of service.
CHARACTERISTICS
Identifiers: VIGILANCE-VUL-7947