Vulnerability DatabaseCVE-2014-6060
Mend.io Vulnerability Database
The largest open source vulnerability database
What is a Vulnerability ID?
New vulnerability? Tell us about it!
CVE-2014-6060
Published:September 04, 2014
Updated:May 17, 2026
The get_option function in dhcpcd 4.0.0 through 6.x before 6.4.3 allows remote DHCP servers to cause a denial of service by resetting the DHO_OPTIONSOVERLOADED option in the (1) bootfile or (2) servername section, which triggers the option to be processed again.
Related Resources (9)
https://people.canonical.com/~ubuntu-security/cve/CVE-2014-6060
http://source.android.com/security/bulletin/2016-04-02.html
http://www.openwall.com/lists/oss-security/2014/07/30/5
http://roy.marples.name/projects/dhcpcd/ci/1d2b93aa5ce25a8a710082fe2d36a6bf7f5794d5?sbs=0
http://www.mandriva.com/security/advisories?name=MDVSA-2014:171
http://advisories.mageia.org/MGASA-2014-0334.html
http://www.openwall.com/lists/oss-security/2014/09/01/11
http://www.securityfocus.com/bid/68970
http://www.slackware.com/security/viewer.php?l=slackware-security&y=2014&m=slackware-security.462420
Do you need more information?
Contact Us
CVSS v3
Base Score:
4.3
Attack Vector
ADJACENT
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality
NONE
Integrity
NONE
Availability
LOW
CVSS v2
Base Score:
3.3
Access Vector
ADJACENT NETWORK
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
PARTIAL
EPSS
Base Score:
0.11