CVE-2003-0039

Name of the Vulnerable Software and Affected Versions dhcp-3.0pl1 dhclient-3.0pl1 dhcp-devel-3.0pl1 ISC dhcrelay (dhcp-relay) versions 3.0rc9 and earlier

Description The issue concerns multiple vulnerabilities in the DHCP package of Red Hat Linux, which can be exploited remotely to compromise the confidentiality, integrity, and availability of protected information. The vulnerabilities can lead to a denial of service via a certain BOOTP packet that causes an infinite loop.

Recommendations For dhcp-3.0pl1, consider disabling the vulnerable DHCP service until a patch is available. For dhclient-3.0pl1, restrict access to the DHCP client to minimize the risk of exploitation. For dhcp-devel-3.0pl1, avoid using the vulnerable development package until the issue is resolved. For ISC dhcrelay (dhcp-relay) versions 3.0rc9 and earlier, consider implementing packet filtering to prevent malicious BOOTP packets from causing a denial of service.