Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact

isc dhcp 4.1-esv vulnerabilities and exploits

(subscribe to this query)
5
CVSSv2
CVE-2018-5732
Failure to properly bounds-check a buffer used for processing DHCP options allows a malicious server (or an entity masquerading as a server) to cause a buffer overflow (and resulting crash) in dhclient by sending a response containing a specially constructed options section. Affe...
Isc Dhcp 4.1-esvIsc DhcpIsc Dhcp 4.1.2Isc Dhcp 4.4.0
7.8
CVSSv2
CVE-2011-0413
The DHCPv6 server in ISC DHCP 4.0.x and 4.1.x prior to 4.1.2-P1, 4.0-ESV and 4.1-ESV prior to 4.1-ESV-R1, and 4.2.x prior to 4.2.1b1 allows remote malicious users to cause a denial of service (assertion failure and daemon crash) by sending a message over IPv6 for a declined and a...
Isc Dhcp 4.0Isc Dhcp 4.0.0Isc Dhcp 4.0.1Isc Dhcp 4.0.2Isc Dhcp 4.0.3Isc Dhcp 4.1.0Isc Dhcp 4.1.1Isc Dhcp 4.1.2Isc Dhcp 4.0-esvIsc Dhcp 4.1-esvIsc Dhcp 4.2.0
NA
CVE-2022-2928
In ISC DHCP 4.4.0 -> 4.4.3, ISC DHCP 4.1-ESV-R1 -> 4.1-ESV-R16-P1, when the function option_code_hash_lookup() is called from add_option(), it increases the option's refcount field. However, there is not a corresponding call to option_dereference() to decrement the ref...
Isc Dhcp 4.1-esvIsc DhcpDebian Debian Linux 10.0Fedoraproject Fedora 35Fedoraproject Fedora 36Fedoraproject Fedora 37
NA
CVE-2022-2929
In ISC DHCP 1.0 -> 4.4.3, ISC DHCP 4.1-ESV-R1 -> 4.1-ESV-R16-P1 a system with access to a DHCP server, sending DHCP packets crafted to include fqdn labels longer than 63 bytes, could eventually cause the server to run out of memory.
Isc Dhcp 4.1-esvIsc DhcpDebian Debian Linux 10.0Fedoraproject Fedora 35Fedoraproject Fedora 36Fedoraproject Fedora 37
5
CVSSv2
CVE-2011-4539
dhcpd in ISC DHCP 4.x prior to 4.2.3-P1 and 4.1-ESV prior to 4.1-ESV-R4 does not properly handle regular expressions in dhcpd.conf, which allows remote malicious users to cause a denial of service (daemon crash) via a crafted request packet.
Isc Dhcp 4.0Isc Dhcp 4.0.0Isc Dhcp 4.0.1Isc Dhcp 4.0.2Isc Dhcp 4.0.3Isc Dhcp 4.1.1Isc Dhcp 4.1.2Isc Dhcp 4.2.0Isc Dhcp 4.2.1Isc Dhcp 4.2.2Isc Dhcp 4.2.3Isc Dhcp 4.1-esvCanonical Ubuntu Linux 11.04Canonical Ubuntu Linux 11.10Debian Debian Linux 6.0Debian Debian Linux 7.0
6.1
CVSSv2
CVE-2012-3571
ISC DHCP 4.1.2 up to and including 4.2.4 and 4.1-ESV prior to 4.1-ESV-R6 allows remote malicious users to cause a denial of service (infinite loop and CPU consumption) via a malformed client identifier.
Isc Dhcp 4.1.2Isc Dhcp 4.2.0Isc Dhcp 4.2.1Isc Dhcp 4.2.2Isc Dhcp 4.2.3Isc Dhcp 4.2.4Isc Dhcp 4.1-esvCanonical Ubuntu Linux 11.04Canonical Ubuntu Linux 11.10Canonical Ubuntu Linux 12.04Debian Debian Linux 6.0Debian Debian Linux 7.0
3.3
CVSSv2
CVE-2012-3954
Multiple memory leaks in ISC DHCP 4.1.x and 4.2.x prior to 4.2.4-P1 and 4.1-ESV prior to 4.1-ESV-R6 allow remote malicious users to cause a denial of service (memory consumption) by sending many requests.
Isc Dhcp 4.1.0Isc Dhcp 4.1.1Isc Dhcp 4.1.2Isc Dhcp 4.2.0Isc Dhcp 4.2.1Isc Dhcp 4.2.2Isc Dhcp 4.2.3Isc Dhcp 4.2.4Isc Dhcp 4.1-esvDebian Debian Linux 6.0Debian Debian Linux 7.0Canonical Ubuntu Linux 11.04Canonical Ubuntu Linux 11.10Canonical Ubuntu Linux 12.04
7.1
CVSSv2
CVE-2016-2774
ISC DHCP 4.1.x prior to 4.1-ESV-R13 and 4.2.x and 4.3.x prior to 4.3.4 does not restrict the number of concurrent TCP sessions, which allows remote malicious users to cause a denial of service (INSIST assertion failure or request-processing outage) by establishing many sessions.
Isc Dhcp 4.1-esvIsc Dhcp 4.1.0Isc Dhcp 4.1.1Isc Dhcp 4.1.2Isc Dhcp 4.2.0Isc Dhcp 4.2.1Isc Dhcp 4.2.2Isc Dhcp 4.2.3Isc Dhcp 4.2.4Isc Dhcp 4.2.5Isc Dhcp 4.2.6Isc Dhcp 4.2.7Isc Dhcp 4.2.8Isc Dhcp 4.3.0Isc Dhcp 4.3.1Isc Dhcp 4.3.2Isc Dhcp 4.3.3Debian Debian Linux 8.0Canonical Ubuntu Linux 14.04Canonical Ubuntu Linux 16.04Canonical Ubuntu Linux 17.10
7.1
CVSSv2
CVE-2012-3955
ISC DHCP 4.1.x prior to 4.1-ESV-R7 and 4.2.x prior to 4.2.4-P2 allows remote malicious users to cause a denial of service (daemon crash) in opportunistic circumstances by establishing an IPv6 lease in an environment where the lease expiration time is later reduced.
Isc Dhcp 4.1-esvIsc Dhcp 4.1.0Isc Dhcp 4.1.1Isc Dhcp 4.1.2Debian Debian Linux 6.0Debian Debian Linux 7.0Canonical Ubuntu Linux 10.04Canonical Ubuntu Linux 11.04Canonical Ubuntu Linux 11.10Canonical Ubuntu Linux 12.04
7.5
CVSSv2
CVE-2011-0997
dhclient in ISC DHCP 3.0.x up to and including 4.2.x prior to 4.2.1-P1, 3.1-ESV prior to 3.1-ESV-R1, and 4.1-ESV prior to 4.1-ESV-R2 allows remote malicious users to execute arbitrary commands via shell metacharacters in a hostname obtained from a DHCP message, as demonstrated by...
Isc Dhcp 3.0Isc Dhcp 3.0.1Isc Dhcp 3.0.2Isc Dhcp 3.0.3Isc Dhcp 3.0.4Isc Dhcp 3.0.5Isc Dhcp 3.0.6Isc Dhcp 3.1-esvIsc Dhcp 3.1.0Isc Dhcp 3.1.1Isc Dhcp 3.1.2Isc Dhcp 3.1.3Isc Dhcp 4.1-esvIsc Dhcp 4.2.0Isc Dhcp 4.2.1Debian Debian Linux 5.0Debian Debian Linux 6.0Debian Debian Linux 7.0Canonical Ubuntu Linux 6.06Canonical Ubuntu Linux 8.04Canonical Ubuntu Linux 9.10Canonical Ubuntu Linux 10.04
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
blind SQL injectionfirmwareCVE-2006-4304CVE-2024-32878CVE-2024-31502XSSCVE-2024-3059CVE-2024-33692CVE-2024-3400
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook