Vulnerability Assessment & Network Security Forums



If through a vulnerability assessment, a network security issue is detected for the vulnerability below, applying the appropriate security patches in a timely matter is very important.  If you have detected that your system has already been compromised, following CERT's Network Security recovery document will assist with recommended steps for system recovery.


Home >> Browse Vulnerability Assessment Database >> General >> DHCP server info gathering


Vulnerability Assessment Details

DHCP server info gathering

Vulnerability Assessment Summary
Chats with the remote DHCP server

Detailed Explanation for this Vulnerability Assessment

This script contacts the remote DHCP server (if any) and
attempts to retrieve information about the network layout.

Some DHCP server provide sensitive information such
as the NIS domain name, or network layout information
such as the list of the network www servers, and so on.

It does not demonstrate any vulnerability, but
a local attacker may use DHCP to become intimately familiar
with the network in no time.

Solution : Apply filtering to keep this information off the network
Network Security Threat Level: Low

Networks Security ID:

Vulnerability Assessment Copyright: This script is Copyright (C) 2001 Renaud Deraison

Cables, Connectors

Serial RS232 to RJ45 Cat5 Ethernet Console Rollover Cable for Cisco Hot clg14
$1.86
Serial RS232 to RJ45 Cat5 Ethernet Console Rollover Cable for Cisco Hot clg14 pictureCisco 3750G Gigabit 48 Port Stackable PoE Switch WS-C3750G-48PS-S IPServices
$349.0
Cisco 3750G Gigabit 48 Port Stackable PoE Switch WS-C3750G-48PS-S IPServices pictureCisco Linksys Etherfast EZXS88W 8 Port 10/100 Workgrop Switch
$9.99
Cisco Linksys Etherfast EZXS88W 8 Port 10/100 Workgrop Switch pictureCisco ASR1002 V02 ? Enterprise Router ASR 1002 ASR1000-ESP10
$2499.99
Cisco ASR1002 V02 ? Enterprise Router ASR 1002  ASR1000-ESP10 picture


Discussions

No Discussions have been posted on this vulnerability.