New Search

VMSA-2011-0010 VMware ESX third party updates for Service Console packages glibc and dhcp

oval:org.mitre.oval:def:12812

dhclient in ISC DHCP 3.0.x through 4.2.x before 4.2.1-P1 3.1-ESV before 3.1-ESV-R1 and 4.1-ESV before 4.1-ESV-R2 allows remote attackers to execute arbitrary commands via shell metacharacters in a hostname obtained from a DHCP message as demonstrated by a hostname that is provided to dhclient-script.

Family:
unix
Status:
ACCEPTED
Platform(s):
  • VMWare ESX Server 4.0
  • VMWare ESX Server 4.1
Class:
vulnerability
Reference(s):
  • CVE-2011-0997
Product(s):