This paper explores vulnerabilities in the Dynamic Host Configuration Protocol (DHCP) and their implications on the Confidentiality, Integrity, and Availability (CIA) Triad. Through an analysis of various attacks, including DHCP Starvation, Rogue DHCP Servers, Replay Attacks, and TunnelVision exploits, the paper provides a taxonomic classification of threats, assesses risks, and proposes appropriate controls. The discussion also highlights the dangers of VPN decloaking through DHCP exploits and underscores the importance of safeguarding network infrastructures. By bringing awareness to the TunnelVision exploit, this paper aims to mitigate risks associated with these prevalent vulnerabilities.

翻译：本文探讨动态主机配置协议（DHCP）中的安全漏洞及其对机密性、完整性与可用性（CIA）三元组的影响。通过对DHCP耗尽攻击、恶意DHCP服务器、重放攻击及TunnelVision漏洞利用等多种攻击方式的分析，本文建立了威胁分类体系，评估了相关风险，并提出了相应的控制措施。讨论同时揭示了通过DHCP漏洞实现VPN去匿名化的危险性，强调了保护网络基础设施的重要性。通过揭示TunnelVision漏洞利用机制，本文旨在降低这些普遍存在的安全漏洞带来的风险。