ZDNet UK


Skip to Main Content

ZDNet.co.uk - Winner of Best Business Website 2007
  1. Home
  2. News
  3. Blogs
  4. Reviews
  5. Prices
  6. Resources
  7. Community
  8. My ZDNet

 

ZDNet UK RSS Feeds


IT Jobs

Enterprise applications Toolkit

CERT warns of key ISC vulnerability

Patrick Gray ZDNet Australia

Published: 16 Jan 2003 09:48 GMT

  • Email
  • Trackback
  • Clip Link
  • Print friendly
  • Post Comment

CERT has warned of a serious security vulnerability in ISC's DHCP (Dynamic Host Configuration Protocol) software, which is shipped with multiple operating systems including popular Linux and BSD variants.

DHCP software is used to assign IP address information to computers on a network as they require it. For example, when a user selects "Obtain an IP address automatically" in their Windows networking settings, it's a DHCP server attached to the network that issues this IP address information to the user's computer.

It was ISC, which also maintains the popular BIND domain name server, that found the vulnerabilities.

"During an internal source code audit, developers from the ISC discovered several vulnerabilities... These vulnerabilities are stack-based buffer overflows," an advisory from CERT said.

CERT have listed known vulnerable software distributions as Red Hat 8 (the current distribution of Red Hat Linux), SuSE Linux, and BSDI, with the vulnerability status of many other vendors unknown at this stage.

This vulnerability is unlikely to expose corporate networks to any new external threats. Most networks do not allow access to DHCP services from outside, however trusted network users with access to the "soft" side of a corporate firewall may be able to exploit this vulnerability.

CERT have recommended that a patch be applied, or where that isn't possible, the DHCP service be shut down.

"As a general rule, the CERT/CC recommends disabling any service or capability that is not explicitly required. Depending on your network configuration, you may not need to use DHCP," they said.

According to the advisory, Red Hat has prepared an updated package to address the issue, SuSE is "...preparing updates, that will be released soon" and BSDI has made patches available. Some other vendors are still testing their distributions to determine their vulnerability status.

For all security-related news, including updates on the latest viruses, hacking exploits and patches, check out ZDNet UK's Security News Section.

Let the editors know what you think in the Mailroom.

  • Email
  • Trackback
  • Clip Link
  • Print friendly Print with HP

Did you find this article useful?
54 out of 92 people found this useful


Talkback

Post a comment


Full Talkback thread

0 comments

Related Links

More In Enterprise applications


Company/Topic Alerts

Create a new alert from the list below:







Related Jobs

Security Consultant Ethical Hacking / Penetration Testing - London

Responsibilities: - Deliver security assessment services including network scanning, vulnerability testing, penetration testing, search engine ...

Systems Administrator/Server2003/ AD/London/ Exchange/TCP/IP/ DNS/DHCP

Systems Administrator/ MCSE/ Server2003/ Active Directory/ SW/London/ Exchange/Anti Virus/ Backups/ IIS/ XP Office/ BES/ TCP/IP/ DNS/ DHCP Worlds ...

APPLICATION SUPPORT (3rd LINE) - Managed Services, LONDON (38k)

You must have experience supporting software products in the following environments: SQL Server ORACLE 9i Red Hat Linux Application Support Analyst ...

Featured Talkback

The internet is going to have do a lot of maturing before it is ready for this kind of traffic. Security is always going to be a problem, connectivity is poor, and most business's are unwilling for their employees to have open access.

By: ator1940

Read full story:
Microsoft prepares to take Office online