Lucene search

[email protected]NVD:CVE-2011-4539

HistoryDec 08, 2011 - 11:55 a.m.

CVE-2011-4539

2011-12-0811:55:02

CWE-20

[email protected]

web.nvd.nist.gov

5 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:N/I:N/A:P

6.2 Medium

AI Score

Confidence

Low

0.028 Low

EPSS

Percentile

90.7%

JSON

dhcpd in ISC DHCP 4.x before 4.2.3-P1 and 4.1-ESV before 4.1-ESV-R4 does not properly handle regular expressions in dhcpd.conf, which allows remote attackers to cause a denial of service (daemon crash) via a crafted request packet.

Affected configurations

NVD

Node

iscdhcpMatch4.0

iscdhcpMatch4.0.0

iscdhcpMatch4.0.1-

iscdhcpMatch4.0.1b1

iscdhcpMatch4.0.1rc1

iscdhcpMatch4.0.2-

iscdhcpMatch4.0.2b1

iscdhcpMatch4.0.2b2

iscdhcpMatch4.0.2b3

iscdhcpMatch4.0.2rc1

iscdhcpMatch4.0.3-

iscdhcpMatch4.0.3b1

iscdhcpMatch4.0.3rc1

iscdhcpMatch4.1.1b3

iscdhcpMatch4.1.1rc1

iscdhcpMatch4.1.2

iscdhcpMatch4.2.0-

iscdhcpMatch4.2.0a1

iscdhcpMatch4.2.0a2

iscdhcpMatch4.2.0b1

iscdhcpMatch4.2.0b2

iscdhcpMatch4.2.0p1

iscdhcpMatch4.2.0rc1

iscdhcpMatch4.2.1-

iscdhcpMatch4.2.1b1

iscdhcpMatch4.2.1rc1

iscdhcpMatch4.2.2-

iscdhcpMatch4.2.2b1

iscdhcpMatch4.2.2rc1

iscdhcpMatch4.2.3-

Node

iscdhcpMatch4.1-esv-

iscdhcpMatch4.1-esvr1

iscdhcpMatch4.1-esvr2

iscdhcpMatch4.1-esvr3

iscdhcpMatch4.1-esvr3_b1

Node

canonicalubuntu_linuxMatch11.04

canonicalubuntu_linuxMatch11.10

Node

debiandebian_linuxMatch6.0

debiandebian_linuxMatch7.0

References

lists.fedoraproject.org/pipermail/package-announce/2011-December/070980.html

lists.fedoraproject.org/pipermail/package-announce/2012-January/071549.html

lists.opensuse.org/opensuse-updates/2011-12/msg00006.html

secunia.com/advisories/47153

secunia.com/advisories/47178

security.gentoo.org/glsa/glsa-201301-06.xml

www.debian.org/security/2012/dsa-2519

www.mandriva.com/security/advisories?name=MDVSA-2011:182

www.securityfocus.com/bid/50971

www.securitytracker.com/id?1026393

www.ubuntu.com/usn/USN-1309-1

exchange.xforce.ibmcloud.com/vulnerabilities/71680

www.isc.org/software/dhcp/advisories/cve-2011-4539

5 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:N/I:N/A:P

6.2 Medium

AI Score

Confidence

Low

0.028 Low

EPSS

Percentile

90.7%

JSON

Related for NVD:CVE-2011-4539

redhat2 veracode1 openvas31 nessus19 prion1 fedora6 ubuntucve1 amazon1 securityvulns1 freebsd1 debiancve1 cve1 cvelist1 oraclelinux1 ubuntu1 centos1 slackware1 debian2 osv2 gentoo1