Lucene search

[email protected]CVE-2003-0039

HistorySep 01, 2004 - 4:00 a.m.

CVE-2003-0039

2004-09-0104:00:00

[email protected]

web.nvd.nist.gov

isc dhcrelay

dhcp-relay

denial of service

cve-2003-0039

nvd

6.5 Medium

AI Score

Confidence

High

5 Medium

CVSS2

Access Vector

Access Complexity

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:N/I:N/A:P

0.044 Low

EPSS

Percentile

92.4%

JSON

ISC dhcrelay (dhcp-relay) 3.0rc9 and earlier, and possibly other versions, allows remote attackers to cause a denial of service (packet storm) via a certain BOOTP packet that is forwarded to a broadcast MAC address, causing an infinite loop that is not restricted by a hop count.

Affected configurations

NVD

Node

iscdhcpdMatch3.0.1rc1

iscdhcpdMatch3.0.1rc10

iscdhcpdMatch3.0.1rc2

iscdhcpdMatch3.0.1rc3

iscdhcpdMatch3.0.1rc4

iscdhcpdMatch3.0.1rc5

iscdhcpdMatch3.0.1rc6

iscdhcpdMatch3.0.1rc7

iscdhcpdMatch3.0.1rc8

iscdhcpdMatch3.0.1rc9

CPENameOperatorVersion
isc:dhcpdisc dhcpdeq3.0.1

CPE	Name	Operator	Version
isc:dhcpd	isc dhcpd	eq	3.0.1

References

cc.turbolinux.com/security/TLSA-2003-26.txt

distro.conectiva.com.br/atualizacoes/?id=a&anuncio=000616

marc.info/?l=bugtraq&m=104310927813830&w=2

www.debian.org/security/2003/dsa-245

www.kb.cert.org/vuls/id/149953

www.openpkg.org/security/OpenPKG-SA-2003.012-dhcpd.html

www.redhat.com/support/errata/RHSA-2003-034.html

www.securityfocus.com/bid/6628

exchange.xforce.ibmcloud.com/vulnerabilities/11187

6.5 Medium

AI Score

Confidence

High

5 Medium

CVSS2

Access Vector

Access Complexity

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:N/I:N/A:P

0.044 Low

EPSS

Percentile

92.4%

JSON

Related for CVE-2003-0039

openvas2 nessus1 debian2 nvd1 cvelist1 osv1 cert1