Security News > 2018 > May > Red Hat Linux DHCP Client Found Vulnerable to Command Injection Attacks
2018-05-15 20:48
A Google security researcher has discovered a critical remote command injection vulnerability in the DHCP client implementation of Red Hat Linux and its derivatives like Fedora operating system. The vulnerability, tracked as CVE-2018-1111, could allow attackers to execute arbitrary commands with root privileges on targeted systems. Whenever your system joins a network, it’s the DHCP client
News URL
http://feedproxy.google.com/~r/TheHackersNews/~3/SKTnz7tkojQ/linux-dhcp-hacking.html
Related news
- Linux Version of DinodasRAT Spotted in Cyber Attacks Across Several Countries (source)
- Red Hat warns of backdoor in XZ tools used by most Linux distros (source)
- XZ Utils Supply Chain Attack: A Threat Actor Spent Two Years to Implement a Linux Backdoor (source)
- Critical Rust flaw enables Windows command injection attacks (source)
- New Spectre v2 attack impacts Linux systems on Intel CPUs (source)
Related Vulnerability
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2018-05-17 | CVE-2018-1111 | Command Injection vulnerability in multiple products DHCP packages in Red Hat Enterprise Linux 6 and 7, Fedora 28, and earlier are vulnerable to a command injection flaw in the NetworkManager integration script included in the DHCP client. | 7.5 |