Lucene search
K

25 matches found

CVE
CVE
added 2021/05/26 10:10 p.m.537 views

CVE-2021-25217

CVE-2021-25217 affects ISC DHCP (DHCP client/server) across multiple branches (notably 4.1-ESV-R16, 4.4.0–4.4.2; other 4.0/4.3 may be affected but untested). The vulnerability is a stack-based buffer overrun in parsing statements with colon-separated hex digits in config or lease files, potential...

7.4CVSS7.7AI score0.06118EPSS
CVE
CVE
added 2022/10/07 4:45 a.m.287 views

CVE-2022-2929

CVE-2022-2929 affects ISC DHCP server components in multiple releases (ISC DHCP 1.0–4.4.3 and 4.1-ESV-R1–4.1-ESV-R16-P1). The issue arises when a DHCP server processes packets with fqdn labels longer than 63 bytes, leading to memory exhaustion on the server. Connected documents corroborate the ro...

6.5CVSS6.7AI score0.0062EPSS
CVE
CVE
added 2022/10/07 4:45 a.m.286 views

CVE-2022-2928

CVE-2022-2928 affects ISC DHCP (versions including 4.4.0–4.4.3 and 4.1-ESV-R1–4.1-ESV-R16-P1). Root cause: option_code_hash_lookup() increments an option’s refcount in add_option() without a corresponding option_dereference(), and add_option() is invoked for multiple options in lease query respon...

6.5CVSS6.8AI score0.00664EPSS
CVE
CVE
added 2016/03/09 3:26 p.m.193 views

CVE-2016-2774

CVE-2016-2774 affects ISC DHCP 4.1.x (before 4.1-ESV-R13), 4.2.x, and 4.3.x before 4.3.4, enabling DoS by opening many TCP sessions. Public advisories (IBM, Debian, Cloud Foundry/Ubuntu, Broadcom) confirm this vulnerability and document fixes: Debian Linux 4.3.1-6+deb8u4; IBM PowerKVM/Power i pat...

7.1CVSS5.7AI score0.73622EPSS
CVE
CVE
added 2019/01/16 8:0 p.m.177 views

CVE-2017-3144

ISC DHCP vulnerability CVE-2017-3144 arises from failure to properly clean up closed OMAPI connections, which can exhaust the DHCP server’s socket descriptor pool and cause a denial of service. Affected releases include ISC DHCP 4.1.0 to 4.1-ESV-R15, 4.2.0 to 4.2.8, and 4.3.0 to 4.3.6; older vers...

7.5CVSS6.2AI score0.72724EPSS
CVE
CVE
added 2019/01/16 8:0 p.m.171 views

CVE-2018-5733

CVE-2018-5733 involves an overflow in the DHCP server’s reference counting when processing client requests, potentially allowing a malicious DHCP client sending large traffic to crash dhcpd. Affected ISC DHCP versions: 4.1.0 through 4.1-ESV-R15, 4.2.0 through 4.2.8, 4.3.0 through 4.3.6, and 4.4.0...

7.5CVSS6.7AI score0.20242EPSS
CVE
CVE
added 2009/07/14 8:16 p.m.164 views

CVE-2009-0692

ISC DHCP dhclient is affected by a stack-based buffer overflow in script_write_params() in client/dhclient.c. The vulnerability, CVE-2009-0692, affects dhclient versions 4.1 before 4.1.0p1, 4.0 before 4.0.1p1, 3.1 before 3.1.2p1, 3.0, and 2.0. A remote DHCP server can craft a subnet-mask option t...

10CVSS7.9AI score0.2578EPSS
CVE
CVE
added 2019/10/09 2:17 p.m.147 views

CVE-2018-5732

CVE-2018-5732 affects the ISC DHCP client (dhclient) and is due to a bounds-check/buffer handling flaw in processing DHCP options, which can allow a malicious DHCP server to trigger a buffer overflow and potentially execute arbitrary code on the client. The vulnerability impacts ISC DHCP versions...

7.5CVSS7.8AI score0.0496EPSS
CVE
CVE
added 2016/01/14 10:0 p.m.136 views

CVE-2015-8605

CVE-2015-8605 affects ISC DHCP 4.x (4.1-ESV-R12-P1, 4.2.x, 4.3.x up to 4.3.3-P1). A remote attacker can crash the DHCP server/client/relay by sending a UDP IPv4 packet with an invalid length field, causing a denial of service. IBM and F5 advisories document vendor-specific fixes and recommended u...

6.5CVSS5.9AI score0.7645EPSS
CVE
CVE
added 2011/04/08 3:0 p.m.133 views

CVE-2011-0997

CVE-2011-0997 affects ISC DHCP dhclient across multiple releases (3.0.x–4.2.x before 4.2.1-P1; 3.1-ESV before 3.1-ESV-R1; 4.1-ESV before 4.1-ESV-R2). The vulnerability arises from insufficient sanitization of certain DHCP options (notably hostname) in server responses, enabling remote attackers t...

7.5CVSS7.6AI score0.84292EPSS
CVE
CVE
added 2011/12/08 11:0 a.m.105 views

CVE-2011-4539

CVE-2011-4539 affects ISC DHCP: dhcpd in 4.x before 4.2.3-P1 and 4.1-ESV before 4.1-ESV-R4 fails to properly handle regular expressions in dhcpd.conf, enabling remote attackers to cause a denial of service (daemon crash) via a crafted request packet. Public advisories and Nessus/OpenSSL patch ref...

5CVSS6.2AI score0.15478EPSS
CVE
CVE
added 2012/07/25 10:0 a.m.98 views

CVE-2012-3571

ISC DHCP CVE-2012-3571 affects DHCP servers using ISC DHCP versions 4.1.2–4.2.4 and 4.1-ESV prior to 4.1-ESV-R6. A malformed client identifier can cause a remote denial of service (infinite loop and high CPU). The connected advisories indicate remediation through updates to fix this issue; e.g., ...

6.1CVSS6.3AI score0.12985EPSS
CVE
CVE
added 2012/09/14 10:0 a.m.97 views

CVE-2012-3955

CVE-2012-3955 affects ISC DHCP 4.1.x prior to 4.1-ESV-R7 and 4.2.x prior to 4.2.4-P2. In opportunistic scenarios, remote attackers can cause a denial of service (daemon crash) by establishing an IPv6 lease when the lease expiration time is later reduced. Remediation is to upgrade to ISC DHCP 4.1-...

7.1CVSS6.2AI score0.21653EPSS
CVE
CVE
added 2011/08/15 9:0 p.m.94 views

CVE-2011-2748

CVE-2011-2748 affects ISC DHCP server in 3.x/4.x before 4.2.2, 3.1-ESV before 3.1-ESV-R3, and 4.1-ESV before 4.1-ESV-R3. A crafted DHCP (or BOOTP) packet can cause remote denial of service by terminating the dhcpd daemon. Remediation: upgrade to patched releases (e.g., 4.2.2, 3.1-ESV-R3, 4.1-ESV-...

7.8CVSS6.2AI score0.38775EPSS
CVE
CVE
added 2011/08/15 9:0 p.m.89 views

CVE-2011-2749

CVE-2011-2749 affects the ISC DHCP server in 3.x and 4.x (before 4.2.2, 3.1-ESV-R3, and 4.1-ESV-R3). A crafted BOOTP packet allows remote attackers to cause a denial of service (daemon exit). The connected advisories confirm the same impact for CVE-2011-2748 as well, and multiple distributions re...

7.8CVSS6.2AI score0.38775EPSS
CVE
CVE
added 2009/07/17 4:0 p.m.86 views

CVE-2009-1893

CVE-2009-1893 is a local‑privilege issue in the Red Hat dhcpd init script for DHCP 3.0.1 on RHEL where a symlink attack during the configtest/restart/reload path could let a local attacker overwrite arbitrary files via a temporary file. The root cause is insecure usage of a temporary file by the ...

6.9CVSS7.2AI score0.00602EPSS
CVE
CVE
added 2010/12/17 6:0 p.m.84 views

CVE-2010-3616

CVE-2010-3616 affects ISC DHCP server 4.2 when configured for failover partnerships. A remote attacker can trigger a denial of service by connecting to the port intended for a failover peer (demonstrated via Nagios check_tcp to TCP port 520), causing a communications-interrupted state and DHCP cl...

5CVSS6.5AI score0.07946EPSS
CVE
CVE
added 2009/07/17 4:0 p.m.82 views

CVE-2009-1892

CVE-2009-1892 concerns the ISC DHCP server (dhcpd) prior to patched releases in 3.0.x/3.1.x where configuration mixes dhcp-client-identifier and hardware ethernet definitions. The vulnerability causes the server to terminate or become unresponsive (denial of service) when processing certain well-...

5CVSS6.4AI score0.08566EPSS
CVE
CVE
added 2010/06/07 1:38 p.m.77 views

CVE-2010-2156

CVE-2010-2156 affects ISC DHCP server: versions 4.1 before 4.1.1-P1 and 4.0 before 4.0.2-P1 are vulnerable to a denial-of-service caused by a zero-length client_id option, which triggers a server exit when hashing the value. Public references document this vulnerability and indicate patches are a...

5CVSS6.3AI score0.76412EPSS
CVE
CVE
added 2012/07/25 10:0 a.m.75 views

CVE-2012-3954

CVE-2012-3954 affects ISC DHCP 4.1.x and 4.2.x prior to 4.2.4-P1 and 4.1-ESV prior to 4.1-ESV-R6. The issue is multiple memory leaks that allow a remote attacker to cause a denial of service by sending many requests, resulting in memory consumption. Connected advisories confirm the same vulnerabi...

3.3CVSS6.3AI score0.04334EPSS
CVE
CVE
added 2011/01/31 8:0 p.m.74 views

CVE-2011-0413

CVE-2011-0413 affects ISC DHCP: DHCPv6 server in 4.0.x, 4.1.x before 4.1.2-P1, 4.0-ESV and 4.1-ESV before 4.1-ESV-R1, and 4.2.x before 4.2.1b1 allows remote attackers to trigger an assertion failure and daemon crash by sending a DHCPv6 message for a declined/abandoned address, causing a denial of...

7.8CVSS6.3AI score0.32751EPSS
CVE
CVE
added 2010/11/04 5:0 p.m.69 views

CVE-2010-3611

CVE-2010-3611 affects ISC DHCP server 4.0<4.0.2, 4.1<4.1.2, and 4.2

4.3CVSS6.2AI score0.09402EPSS
CVE
CVE
added 2013/03/28 4:0 p.m.69 views

CVE-2013-2494

CVE-2013-2494 (libdns in ISC DHCP 4.2.x) is linked to CVE-2013-2266 in BIND. The connected documents describe a denial-of-service due to memory exhaustion triggered by a crafted regular expression processed by named in ISC BIND’s libdns, affecting multiple BIND versions (notably 9.7.x and 9.8.x f...

4.9CVSS8AI score0.01166EPSS
CVE
CVE
added 2012/01/15 2:0 a.m.66 views

CVE-2011-4868

ISC DHCP (dhcpd) before 4.2.3-P2 is affected when using Dynamic DNS with IPv6. The issue lies in the logging/DDNS handling of the DHCPv6 lease structure during lease-status updates, which can trigger a NULL pointer dereference and crash the daemon (denial of service). Exploitation details are not...

6.1CVSS6.4AI score0.03612EPSS
CVE
CVE
added 2012/07/25 10:0 a.m.61 views

CVE-2012-3570

ISC DHCP 4.2.x before 4.2.4-P1 is affected by a buffer overflow in DHCPv6 mode triggered by a crafted client identifier, leading to remote DoS via segmentation fault and daemon exit. The issue is documented across multiple sources (CVE-2012-3570) and is addressed by upgrading to 4.2.4-P1 (openSUS...

5.7CVSS6.5AI score0.02572EPSS