PT-2010-1152 · Isc · Isc Dhcp

Sid

Published

2010-05-17

Updated

2024-06-15

CVE-2010-2156

CVSS v2.0

5.0

Medium

Vector

AV:N/AC:L/Au:N/C:N/I:N/A:P

Name of the Vulnerable Software and Affected Versions ISC DHCP versions 4.1 before 4.1.1-P1 ISC DHCP versions 4.0 before 4.0.2-P1

Description The issue is related to insufficient input validation, allowing remote attackers to cause a denial of service via a specially crafted request containing a zero-length client ID. This can lead to a server exit.

Recommendations For ISC DHCP version 4.1 before 4.1.1-P1, update to version 4.1.1-P1 or later. For ISC DHCP version 4.0 before 4.0.2-P1, update to version 4.0.2-P1 or later.

Exploit

Fix

RCE

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-20CWE-189

Related Identifiers

BDU:2018-00784

CVE-2010-2156

OPENSUSE-SU-2024:10358-1

Affected Products

Isc Dhcp

PT-2010-1152 · Isc · Isc Dhcp

CVE-2010-2156

Weakness Enumeration

Related Identifiers

Affected Products

References · 34