Lucene search
HistoryMar 28, 2013 - 4:55 p.m.
CVE-2013-2494
4.9 Medium
CVSS2
Attack Vector
NETWORK
Attack Complexity
HIGH
Authentication
SINGLE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
COMPLETE
AV:N/AC:H/Au:S/C:N/I:N/A:C
8.1 High
AI Score
Confidence
High
0.943 High
EPSS
Percentile
99.2%
libdns in ISC DHCP 4.2.x before 4.2.5-P1 allows remote name servers to cause a denial of service (memory consumption) via vectors involving a regular expression, as demonstrated by a memory-exhaustion attack against a machine running a dhcpd process, a related issue to CVE-2013-2266.
Affected configurations
Node
iscdhcpMatch4.2.0
ORiscdhcpMatch4.2.0a1
ORiscdhcpMatch4.2.0a2
ORiscdhcpMatch4.2.0b1
ORiscdhcpMatch4.2.0b2
ORiscdhcpMatch4.2.0p1
ORiscdhcpMatch4.2.0rc1
ORiscdhcpMatch4.2.1
ORiscdhcpMatch4.2.1b1
ORiscdhcpMatch4.2.1rc1
ORiscdhcpMatch4.2.2
ORiscdhcpMatch4.2.2b1
ORiscdhcpMatch4.2.2rc1
ORiscdhcpMatch4.2.3
ORiscdhcpMatch4.2.3p1
ORiscdhcpMatch4.2.3p2
ORiscdhcpMatch4.2.4
ORiscdhcpMatch4.2.4p1
ORiscdhcpMatch4.2.5
References
Related
debiancve
debiancve
CVE-2013-2494
2022-10-03 16:14:59
CVE-2013-2266
2013-03-28 16:55:01
cvelist
cvelist
CVE-2013-2494
2022-10-03 16:14:59
CVE-2013-2266
2013-03-28 16:00:00
nessus
nessus
Mandriva Linux Security Advisory : dhcp (MDVSA-2013:059)
2013-04-20 00:00:00
openSUSE Security Update : dhcp (openSUSE-SU-2013:0619-1)
2014-06-13 00:00:00
CentOS 5 : bind97 (CESA-2013:0690)
2013-03-29 00:00:00
ubuntucve
ubuntucve
CVE-2013-2494
2013-03-28 00:00:00
CVE-2013-2266
2013-03-26 00:00:00
cve
cve
CVE-2013-2494
2022-10-03 16:14:59
CVE-2013-2266
2013-03-28 16:55:01
prion
prion
Design/Logic Flaw
2013-03-28 16:55:00
Code injection
2013-03-28 16:55:00
rosalinux
rosalinux
Advisory ROSA-SA-2021-1822
2021-07-02 16:37:55
openvas
openvas
Amazon Linux: Security Advisory (ALAS-2013-176)
2015-09-08 00:00:00
CentOS Update for bind97 CESA-2013:0690 centos5
2013-04-02 00:00:00
Ubuntu: Security Advisory (USN-1783-1)
2013-04-02 00:00:00
fedora
fedora
[SECURITY] Fedora 18 Update: bind-9.9.2-10.P2.fc18
2013-04-05 23:08:28
[SECURITY] Fedora 17 Update: bind-9.9.2-7.P2.fc17
2013-04-07 00:25:01
[SECURITY] Fedora 18 Update: bind-9.9.3-4.P2.fc18
2013-08-04 00:13:45
veracode
veracode
Denial Of Service (DoS)
2019-01-15 08:51:10
oraclelinux
oraclelinux
bind security and bug fix update
2013-03-28 00:00:00
bind97 security update
2013-03-28 00:00:00
bind97 security and bug fix update
2014-09-17 00:00:00
redhat
redhat
(RHSA-2013:0690) Important: bind97 security update
2013-03-28 00:00:00
(RHSA-2013:0689) Important: bind security and bug fix update
2013-03-28 00:00:00
(RHSA-2013:0746) Important: rhev-hypervisor6 security and bug fix update
2013-04-23 00:00:00
securityvulns
securityvulns
[USN-1783-1] Bind vulnerability
2013-04-01 00:00:00
[slackware-security] dhcp (SSA:2013-086-02)
2013-04-01 00:00:00
bind / dhcp DoS
2013-04-01 00:00:00
seebug
seebug
ISC BIND 9 'libdns' θΏη¨ζη»ζε‘ζΌζ΄(CVE-2013-2266)
2013-03-29 00:00:00
freebsd
freebsd
FreeBSD -- BIND remote denial of service
2013-04-02 00:00:00
dns/bind9* -- Malicious Regex Can Cause Memory Exhaustion
2013-03-11 00:00:00
f5
f5
SOL14386 - BIND vulnerability CVE-2013-2266
2013-05-01 00:00:00
K14386 : BIND vulnerability CVE-2013-2266
2014-08-26 00:00:00
amazon
amazon
Important: bind
2013-04-04 11:09:00
nvd
nvd
CVE-2013-2266
2013-03-28 16:55:01
centos
centos
bind97 security update
2013-03-28 23:25:41
bind security update
2013-03-29 00:19:00
checkpoint_advisories
checkpoint_advisories
ISC BIND Regular Expression Handling Denial of Service (CVE-2013-2266)
2013-06-30 00:00:00
freebsd_advisory
freebsd_advisory
FreeBSD-SA-13:04.bind
2013-04-02 00:00:00
debian
debian
[SECURITY] [DSA 2656-1] bind9 security update
2013-03-30 15:42:49
ubuntu
ubuntu
Bind vulnerability
2013-03-29 00:00:00
gentoo
gentoo
ISC DHCP: Denial of service
2014-01-06 00:00:00
BIND: Denial of service
2014-01-29 00:00:00
4.9 Medium
CVSS2
Attack Vector
NETWORK
Attack Complexity
HIGH
Authentication
SINGLE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
COMPLETE
AV:N/AC:H/Au:S/C:N/I:N/A:C
8.1 High
AI Score
Confidence
High
0.943 High
EPSS
Percentile
99.2%
Related for NVD:CVE-2013-2494