PT-2011-2333 · Isc+1 · Isc Dhcp+1

Larissa Shapiro

Published

2011-01-31

Updated

2024-06-15

CVE-2011-0413

CVSS v2.0

7.8

High

Vector

AV:N/AC:L/Au:N/C:N/I:N/A:C

Name of the Vulnerable Software and Affected Versions ISC DHCP versions 4.0.x through 4.1.x before 4.1.2-P1 ISC DHCP 4.0-ESV and 4.1-ESV before 4.1-ESV-R1 ISC DHCP versions 4.2.x before 4.2.1b1

Description The issue allows remote attackers to cause a denial of service by sending a message over IPv6 for a declined and abandoned address, resulting in an assertion failure and daemon crash.

Recommendations For ISC DHCP versions 4.0.x through 4.1.x before 4.1.2-P1, update to version 4.1.2-P1 or later. For ISC DHCP 4.0-ESV and 4.1-ESV before 4.1-ESV-R1, update to version 4.1-ESV-R1 or later. For ISC DHCP versions 4.2.x before 4.2.1b1, update to version 4.2.1b1 or later.

Fix

DoS

RCE

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-20

Related Identifiers

CVE-2011-0413

DSA-2184-1

OPENSUSE-SU-2024:10358-1

RHSA-2011:0256

RHSA-2011_0256

Affected Products

Isc Dhcp

Red Hat

PT-2011-2333 · Isc+1 · Isc Dhcp+1

CVE-2011-0413

Weakness Enumeration

Related Identifiers

Affected Products

References · 45