{ "name": "CVE-2014-6060", "CVE": [ [ "CVE-2014-6060", "Bulletin-CVE-2014-6060" ] ], "Coordinated_disclosure": "unknown", "Categories": [ "Remote Code Execution Vulnerability in DHCPCD" ], "Details": [ [ "The get_option function in dhcpcd 4.0.0 through 6.x before 6.4.3 allows remote DHCP servers to cause a denial of service by resetting the DHO_OPTIONSOVERLOADED option in the (1) bootfile or (2) servername section, which triggers the option to be processed again.", "NIST-CVE-2014-6060" ] ], "Discovered_on": [], "Discovered_by": [], "Submission": [ { "by": "dcc52", "on": "2019-07-29" } ], "Reported_on": [ [ "2016-04-02", "Bulletin-CVE-2014-6060" ] ], "Fixed_on": [ [ "2014-08-15", "ANDROID-16677003" ] ], "Fix_released_on": [], "Affected_versions": [ [ "4.4.4", "Bulletin-CVE-2014-6060" ] ], "Affected_devices": [], "Affected_versions_regexp": [ "(4\\.4\\.4)" ], "Affected_manufacturers": [ [ "all", "Bulletin-CVE-2014-6060" ] ], "Fixed_versions": [ [ "4.4.4", "Bulletin-CVE-2014-6060" ] ], "Fixed_versions_regexp": [ "(4\\.4\\.4)" ], "references": { "ANDROID-15268738": { "url": "https://android.googlesource.com/platform/external/dhcpcd/+/38cb7a7feff88d58fb4a565ba7f12cd4469af243" }, "ANDROID-16677003": { "url": "https://android.googlesource.com/platform/external/dhcpcd/+/de806dfdb6dd3b9dec5d1d23c9029fb300799cf8" }, "NIST-CVE-2014-6060": { "url": "https://nvd.nist.gov/vuln/data-feeds" }, "Bulletin-CVE-2014-6060": { "url": "https://source.android.com/security/bulletin/2016-04-02.html" } }, "Surface": [ "remote" ], "Vector": [ "memory-corruption" ], "Target": [ "system-component" ], "Channel": [ "remote" ], "Condition": [ "attacker-on-same-network" ], "Privilege": [ "system" ], "CWE": [ [ "CWE-399", "NIST-CVE-2014-6060" ] ] }