Computer Security
[EN] securityvulns.ru no-pyccku


ISC dhcp multiple security vulnerabilities
updated since 29.07.2012
Published:18.09.2012
Source:
SecurityVulns ID:12491
Type:remote
Threat Level:
5/10
Description:Multiple DoS conditions.
Affected:ISC : dhcp 4.1
 DHCP : dhcp 4.2
CVE:CVE-2012-3955 (ISC DHCP 4.1.x before 4.1-ESV-R7 and 4.2.x before 4.2.4-P2 allows remote attackers to cause a denial of service (daemon crash) in opportunistic circumstances by establishing an IPv6 lease in an environment where the lease expiration time is later reduced.)
 CVE-2012-3954 (Multiple memory leaks in ISC DHCP 4.1.x and 4.2.x before 4.2.4-P1 and 4.1-ESV before 4.1-ESV-R6 allow remote attackers to cause a denial of service (memory consumption) by sending many requests.)
 CVE-2012-3571 (ISC DHCP 4.1.2 through 4.2.4 and 4.1-ESV before 4.1-ESV-R6 allows remote attackers to cause a denial of service (infinite loop and CPU consumption) via a malformed client identifier.)
 CVE-2012-3570 (Buffer overflow in ISC DHCP 4.2.x before 4.2.4-P1, when DHCPv6 mode is enabled, allows remote attackers to cause a denial of service (segmentation fault and daemon exit) via a crafted client identifier parameter.)
Original documentdocumentMANDRIVA, [ MDVSA-2012:153 ] dhcp (18.09.2012)
 documentMANDRIVA, [ MDVSA-2012:115 ] dhcp (29.07.2012)

About | Terms of use | Privacy Policy
© SecurityVulns, 3APA3A, Vladimir Dubrovin
Nizhny Novgorod