VULHUB ™

It has been discovered that devices running Netscreen ScreenOS and acting as a DHCP server may leak sensitive information in DHCP packets. The problem occurs due to the application failting to sufficiently re-initialize or zero out previously used buffers prior to using them to store DHCP packet information. As a result, an attacker making a DHCP request to a target device may be capable of obtaining sensitive information, such as usernames or passwords.

It has been discovered that devices running Netscreen ScreenOS and acting as a DHCP server may leak sensitive information in DHCP packets. The problem occurs due to the application failting to sufficiently re-initialize or zero out previously used buffers prior to using them to store DHCP packet information. As a result, an attacker making a DHCP request to a target device may be capable of obtaining sensitive information, such as usernames or passwords.