10 High
CVSS2
Access Vector
NETWORK
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:L/Au:N/C:C/I:C/A:C
0.254 Low
EPSS
Percentile
96.6%
ISC DHCP is ISC’s reference implementation of all aspects of the Dynamic Host Configuration Protocol.
A buffer overflow error was found in ISC DHCP server, that can only be exploited under unusual server configurations where the DHCP server is configured to provide clients with a large set of DHCP options.
A remote attacker could exploit this vulnerability to cause a Denial of Service.
There is no known workaround at this time.
All ISC DHCP users should upgrade to the latest version:
# emerge --sync
# emerge --ask --oneshot --verbose ">=net-misc/dhcp-3.1.1"
OS | Version | Architecture | Package | Version | Filename |
---|---|---|---|---|---|
Gentoo | any | all | net-misc/dhcp | < 3.1.1 | UNKNOWN |