CVE-2011-2716: Input Validation
First published: Tue Jul 03 2012(Updated: )
The DHCP client (udhcpc) in BusyBox before 1.20.0 allows remote DHCP servers to execute arbitrary commands via shell metacharacters in the (1) HOST_NAME, (2) DOMAIN_NAME, (3) NIS_DOMAIN, and (4) TFTP_SERVER_NAME host name options.
Credit: secalert@redhat.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| ASUS TM-AC1900 | =3.0.0.4.376_3169 | |
| BusyBox | =1.11.0 | |
| BusyBox | =1.12.0 | |
| BusyBox | =1.0.0-pre7 | |
| BusyBox | =1.17.1 | |
| BusyBox | =1.7.0 | |
| BusyBox | =1.12.2 | |
| BusyBox | =1.1.3 | |
| BusyBox | =1.7.1 | |
| BusyBox | =1.0.0-pre3 | |
| BusyBox | =1.4.1 | |
| BusyBox | =1.11.3 | |
| BusyBox | =1.9.2 | |
| BusyBox | =1.1.0 | |
| BusyBox | =1.0.0-pre1 | |
| BusyBox | =1.13.4 | |
| BusyBox | =1.8.2 | |
| BusyBox | =1.10.0 | |
| BusyBox | =0.60.5 | |
| BusyBox | =1.17.0 | |
| BusyBox | =1.0.0-rc3 | |
| BusyBox | =1.19.2 | |
| BusyBox | =1.16.2 | |
| BusyBox | =1.9.1 | |
| BusyBox | =1.18.5 | |
| BusyBox | =1.18.4 | |
| BusyBox | =1.8.1 | |
| BusyBox | =1.2.1 | |
| BusyBox | =1.19.0 | |
| BusyBox | =1.0.0-pre4 | |
| BusyBox | =1.1.0-pre1 | |
| BusyBox | =1.14.2 | |
| BusyBox | =1.13.0 | |
| BusyBox | =1.5.0 | |
| BusyBox | =1.13.2 | |
| BusyBox | =1.10.2 | |
| BusyBox | =1.11.1 | |
| BusyBox | =1.17.2 | |
| BusyBox | =1.2.0 | |
| BusyBox | =1.3.2 | |
| BusyBox | =1.10.4 | |
| BusyBox | =1.01 | |
| BusyBox | =1.14.1 | |
| BusyBox | =1.0.0-pre2 | |
| BusyBox | =1.7.2 | |
| BusyBox | =1.0.0-rc2 | |
| BusyBox | =1.18.1 | |
| BusyBox | =1.13.1 | |
| BusyBox | =1.14.0 | |
| BusyBox | =1.2.2.1 | |
| BusyBox | =1.0.0-pre6 | |
| BusyBox | =1.12.1 | |
| BusyBox | =1.00 | |
| BusyBox | =1.16.1 | |
| BusyBox | =1.3.1 | |
| BusyBox | =1.15.0 | |
| BusyBox | =1.11.2 | |
| BusyBox | =1.1.2 | |
| BusyBox | =1.0.0-pre10 | |
| BusyBox | =1.15.2 | |
| BusyBox | =1.0.0-pre9 | |
| BusyBox | =1.6.1 | |
| BusyBox | =1.9.0 | |
| BusyBox | =1.0.0-pre8 | |
| BusyBox | =1.17.3 | |
| BusyBox | =1.18.3 | |
| BusyBox | =1.15.1 | |
| BusyBox | =1.10.1 | |
| BusyBox | =1.12.3 | |
| BusyBox | =1.7.3 | |
| BusyBox | =1.14.3 | |
| BusyBox | =1.17.4 | |
| BusyBox | =1.0.0-rc1 | |
| BusyBox | =1.10.3 | |
| BusyBox | =1.8.0 | |
| BusyBox | =1.18.2 | |
| BusyBox | =1.4.2 | |
| BusyBox | <=1.19.4 | |
| BusyBox | =1.13.3 | |
| BusyBox | =1.5.1 | |
| BusyBox | =1.16.0 | |
| BusyBox | =1.19.3 | |
| BusyBox | =1.12.4 | |
| BusyBox | =1.0.0-pre5 | |
| BusyBox | =1.3.0 | |
| BusyBox | =1.6.0 | |
| BusyBox | =1.2.2 | |
| BusyBox | =1.4.0 | |
| BusyBox | =1.18.0 | |
| BusyBox | =1.1.1 | |
| BusyBox | =1.15.3 | |
| BusyBox | =1.14.4 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
- http://secunia.com/advisories/45363
- http://downloads.avaya.com/css/P8/documents/100158840
- http://rhn.redhat.com/errata/RHSA-2012-0810.html
- http://www.securityfocus.com/bid/48879
- https://bugs.busybox.net/show_bug.cgi?id=3979
- http://www.busybox.net/news.html
- http://www.mandriva.com/security/advisories?name=MDVSA-2012:129
- https://support.t-mobile.com/docs/DOC-21994
- http://seclists.org/fulldisclosure/2019/Jun/18
- https://seclists.org/bugtraq/2019/Jun/14
- http://packetstormsecurity.com/files/153278/WAGO-852-Industrial-Managed-Switch-Series-Code-Execution-Hardcoded-Credentials.html
- http://seclists.org/fulldisclosure/2020/Aug/20
Frequently Asked Questions
What is the severity of CVE-2011-2716?
CVE-2011-2716 is considered to have a moderate severity level due to the potential for remote command execution.
How do I fix CVE-2011-2716?
To fix CVE-2011-2716, update your BusyBox version to 1.20.0 or later, which contains the necessary patches.
Who is affected by CVE-2011-2716?
CVE-2011-2716 affects several versions of BusyBox prior to 1.20.0 and specific firmware implementations such as T-Mobile's TM-AC1900 router.
What are the potential risks of CVE-2011-2716?
The risks associated with CVE-2011-2716 include unauthorized execution of arbitrary commands on affected systems.
What components are primarily involved in CVE-2011-2716?
CVE-2011-2716 primarily involves the DHCP client (udhcpc) and its handling of parameters like HOST_NAME and DOMAIN_NAME.
- agent/references
- agent/type
- collector/mitre-cve
- source/MITRE
- agent/last-modified-date
- agent/author
- agent/severity
- agent/remedy
- agent/weakness
- agent/first-publish-date
- agent/description
- agent/event
- agent/source
- agent/tags
- agent/softwarecombine
- collector/nvd-historical
- agent/software-canonical-lookup-request
- collector/nvd-index
- vendor/t-mobile
- canonical/asus tm-ac1900
- version/asus tm-ac1900/3.0.0.4.376_3169
- vendor/busybox
- canonical/busybox
- version/busybox/1.11.0
- version/busybox/1.12.0
- version/busybox/1.0.0-pre7
- version/busybox/1.17.1
- version/busybox/1.7.0
- version/busybox/1.12.2
- version/busybox/1.1.3
- version/busybox/1.7.1
- version/busybox/1.0.0-pre3
- version/busybox/1.4.1
- version/busybox/1.11.3
- version/busybox/1.9.2
- version/busybox/1.1.0
- version/busybox/1.0.0-pre1
- version/busybox/1.13.4
- version/busybox/1.8.2
- version/busybox/1.10.0
- version/busybox/0.60.5
- version/busybox/1.17.0
- version/busybox/1.0.0-rc3
- version/busybox/1.19.2
- version/busybox/1.16.2
- version/busybox/1.9.1
- version/busybox/1.18.5
- version/busybox/1.18.4
- version/busybox/1.8.1
- version/busybox/1.2.1
- version/busybox/1.19.0
- version/busybox/1.0.0-pre4
- version/busybox/1.1.0-pre1
- version/busybox/1.14.2
- version/busybox/1.13.0
- version/busybox/1.5.0
- version/busybox/1.13.2
- version/busybox/1.10.2
- version/busybox/1.11.1
- version/busybox/1.17.2
- version/busybox/1.2.0
- version/busybox/1.3.2
- version/busybox/1.10.4
- version/busybox/1.01
- version/busybox/1.14.1
- version/busybox/1.0.0-pre2
- version/busybox/1.7.2
- version/busybox/1.0.0-rc2
- version/busybox/1.18.1
- version/busybox/1.13.1
- version/busybox/1.14.0
- version/busybox/1.2.2.1
- version/busybox/1.0.0-pre6
- version/busybox/1.12.1
- version/busybox/1.00
- version/busybox/1.16.1
- version/busybox/1.3.1
- version/busybox/1.15.0
- version/busybox/1.11.2
- version/busybox/1.1.2
- version/busybox/1.0.0-pre10
- version/busybox/1.15.2
- version/busybox/1.0.0-pre9
- version/busybox/1.6.1
- version/busybox/1.9.0
- version/busybox/1.0.0-pre8
- version/busybox/1.17.3
- version/busybox/1.18.3
- version/busybox/1.15.1
- version/busybox/1.10.1
- version/busybox/1.12.3
- version/busybox/1.7.3
- version/busybox/1.14.3
- version/busybox/1.17.4
- version/busybox/1.0.0-rc1
- version/busybox/1.10.3
- version/busybox/1.8.0
- version/busybox/1.18.2
- version/busybox/1.4.2
- version/busybox/1.19.4
- version/busybox/1.13.3
- version/busybox/1.5.1
- version/busybox/1.16.0
- version/busybox/1.19.3
- version/busybox/1.12.4
- version/busybox/1.0.0-pre5
- version/busybox/1.3.0
- version/busybox/1.6.0
- version/busybox/1.2.2
- version/busybox/1.4.0
- version/busybox/1.18.0
- version/busybox/1.1.1
- version/busybox/1.15.3
- version/busybox/1.14.4