CVE-2017-3144

🗓️ 16 Jan 2019 20:00:00Reported by iscType

CVE-2017-3144: DHCP Server Socket Descriptor Exhaustion Vulnerabilit

Reporter	Title	Published	Views	Family All 72
IBM Security Bulletins	Security Bulletin: IBM Integrated Management Module II (IMM2) is affected by vulnerabilities in dhcp	7 Dec 202322:31	–	ibm
IBM Security Bulletins	Security Bulletin: IBM Dynamic System Analysis (DSA) Preboot is affected by vulnerabilities in cURL, DHCP and GNU C Library	7 Dec 202322:31	–	ibm
IBM Security Bulletins	Security Bulletin: A vulnerability in DHCP affects PowerKVM	18 Jun 201801:41	–	ibm
IBM Security Bulletins	Security Bulletin: IBM BladeCenter Advanced Management Module (AMM) is affected by a vulnerability in dhcp (CVE-2017-3144)	26 Jul 201820:25	–	ibm
IBM Security Bulletins	Security Bulletin: IBM Flex System Chassis Management Module (CMM) is affected by a vulnerabilty in dhcp (CVE-2017-3144)	7 Dec 202322:31	–	ibm
Tenable Nessus	Amazon Linux 2 : dhcp (ALAS-2018-963)	18 Apr 201800:00	–	nessus
Tenable Nessus	CentOS 7 : dhcp (CESA-2018:0158)	26 Jan 201800:00	–	nessus
Tenable Nessus	Debian DSA-4133-1 : isc-dhcp - security update	8 Mar 201800:00	–	nessus
Tenable Nessus	EulerOS 2.0 SP1 : dhcp (EulerOS-SA-2018-1035)	13 Feb 201800:00	–	nessus
Tenable Nessus	EulerOS 2.0 SP2 : dhcp (EulerOS-SA-2018-1036)	13 Feb 201800:00	–	nessus

NVD

Node

isc dhcpRange4.2.0–4.2.8

isc dhcpRange4.3.0–4.3.6

isc dhcpMatch4.1-esv-

isc dhcpMatch4.1-esvr1

isc dhcpMatch4.1-esvr10

isc dhcpMatch4.1-esvr10_b1

isc dhcpMatch4.1-esvr10_rc1

isc dhcpMatch4.1-esvr11

isc dhcpMatch4.1-esvr11_b1

isc dhcpMatch4.1-esvr11_rc1

isc dhcpMatch4.1-esvr11_rc2

isc dhcpMatch4.1-esvr12

isc dhcpMatch4.1-esvr12_b1

isc dhcpMatch4.1-esvr12_p1

isc dhcpMatch4.1-esvr13

isc dhcpMatch4.1-esvr13_b1

isc dhcpMatch4.1-esvr14

isc dhcpMatch4.1-esvr14_b1

isc dhcpMatch4.1-esvr15

isc dhcpMatch4.1-esvr2

isc dhcpMatch4.1-esvr3

isc dhcpMatch4.1-esvr3_b1

isc dhcpMatch4.1-esvr4

isc dhcpMatch4.1-esvr5

isc dhcpMatch4.1-esvr5_b1

isc dhcpMatch4.1-esvr5_rc1

isc dhcpMatch4.1-esvr5_rc2

isc dhcpMatch4.1-esvr6

isc dhcpMatch4.1-esvr7

isc dhcpMatch4.1-esvr8

isc dhcpMatch4.1-esvr8_b1

isc dhcpMatch4.1-esvr8_rc1

isc dhcpMatch4.1-esvr9

isc dhcpMatch4.1-esvr9_b1

isc dhcpMatch4.1-esvr9_rc1

isc dhcpMatch4.1.0

Node

redhat enterprise_linux_desktopMatch7.0

redhat enterprise_linux_serverMatch7.0

redhat enterprise_linux_server_ausMatch7.4

redhat enterprise_linux_server_ausMatch7.6

redhat enterprise_linux_server_eusMatch7.4

redhat enterprise_linux_server_eusMatch7.5

redhat enterprise_linux_server_eusMatch7.6

redhat enterprise_linux_server_tusMatch7.4

redhat enterprise_linux_server_tusMatch7.6

redhat enterprise_linux_workstationMatch7.0

Node

canonical ubuntu_linuxMatch14.04lts

canonical ubuntu_linuxMatch16.04lts

canonical ubuntu_linuxMatch17.10

Node

debian debian_linuxMatch8.0

debian debian_linuxMatch9.0

[
  {
    "product": "ISC DHCP",
    "vendor": "ISC",
    "versions": [
      {
        "status": "affected",
        "version": "ISC DHCP 4.1.0 to 4.1-ESV-R15, 4.2.0 to 4.2.8, 4.3.0 to 4.3.6.  Older versions may also be affected but are well beyond their end-of-life (EOL).  Releases prior to 4.1.0 have not been tested."
      }
    ]
  }
]

Source	Link
usn	www.usn.ubuntu.com/3586-1/
kb	www.kb.isc.org/docs/aa-01541
debian	www.debian.org/security/2018/dsa-4133
access	www.access.redhat.com/errata/RHSA-2018:0158
securitytracker	www.securitytracker.com/id/1040194
securityfocus	www.securityfocus.com/bid/102726

21 Nov 2024 03:24Current

6.2Medium risk

Vulners AI Score6.2

CVSS 25

CVSS 3.17.5

CVSS 35.3

EPSS0.11782

CWE-400