PT-2011-1027 · Isc+1 · Isc Dhcp+1
Vincent Danen
·
Publicado
2011-08-15
·
Atualizado
2024-06-15
·
CVE-2011-2749
CVSS v2.0
7.8
Alta
| Vetor | AV:N/AC:L/Au:N/C:N/I:N/A:C |
Name of the Vulnerable Software and Affected Versions
ISC DHCP versions 3.x through 4.2.2
ISC DHCP 3.1-ESV versions prior to 3.1-ESV-R3
ISC DHCP 4.1-ESV versions prior to 4.1-ESV-R3
dhcp package versions prior to 4.2.4 p2
Description
The server allows remote attackers to cause a denial of service via a crafted BOOTP packet. Multiple vulnerabilities in the dhcp package can lead to disruption of protected information availability. These vulnerabilities can be exploited remotely.
Recommendations
For ISC DHCP versions 3.x through 4.2.2, update to version 4.2.2 or later.
For ISC DHCP 3.1-ESV versions prior to 3.1-ESV-R3, update to version 3.1-ESV-R3 or later.
For ISC DHCP 4.1-ESV versions prior to 4.1-ESV-R3, update to version 4.1-ESV-R3 or later.
For dhcp package versions prior to 4.2.4 p2, update to version 4.2.4 p2 or later.
Correção
DoS
RCE
Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾
Enumeração de Fraquezas
Identificadores relacionados
Produtos afetados
Isc Dhcp
Red Hat