Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
isc dhcpd vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2004-1006
Format string vulnerability in the log functions in dhcpd for dhcp 2.x allows remote DNS servers to execute arbitrary code via certain DNS messages, a different vulnerability than CVE-2002-0702.
Isc Dhcpd 3.0
Isc Dhcpd 3.0.1
Isc Dhcpd 3.0 B2pl23
Isc Dhcpd 3.0 B2pl9
Isc Dhcpd 3.0 Pl1
Isc Dhcpd 3.0 Pl2
Isc Dhcpd 2.0.pl5
NA
CVE-2002-0702
Format string vulnerabilities in the logging routines for dynamic DNS code (print.c) of ISC DHCP daemon (DHCPD) 3 to 3.0.1rc8, with the NSUPDATE option enabled, allow remote malicious DNS servers to execute arbitrary code via format strings in a DNS server response.
Isc Dhcpd 3.0.1
Isc Dhcpd 3.0
1 EDB exploit
NA
CVE-2003-0026
Multiple stack-based buffer overflows in the error handling routines of the minires library, as used in the NSUPDATE capability for ISC DHCPD 3.0 up to and including 3.0.1RC10, allow remote malicious users to execute arbitrary code via a DHCP message containing a long hostname.
Isc Dhcpd 3.0.1
Isc Dhcpd 3.0
NA
CVE-2006-3122
The supersede_lease function in memory.c in ISC DHCP (dhcpd) server 2.0pl5 allows remote malicious users to cause a denial of service (application crash) via a DHCPDISCOVER packet with a 32 byte client-identifier, which causes the packet to be interpreted as a corrupt uid and cau...
Isc Dhcpd
NA
CVE-2003-0039
ISC dhcrelay (dhcp-relay) 3.0rc9 and previous versions, and possibly other versions, allows remote malicious users to cause a denial of service (packet storm) via a certain BOOTP packet that is forwarded to a broadcast MAC address, causing an infinite loop that is not restricted ...
Isc Dhcpd 3.0.1
7.5
CVSSv3
CVE-2019-6470
There had existed in one of the ISC BIND libraries a bug in a function that was used by dhcpd when operating in DHCPv6 mode. There was also a bug in dhcpd relating to the use of this function per its documentation, but the bug in the library function prevented this from causing a...
Isc Bind
Isc Dhcpd
Redhat Enterprise Linux Desktop 7.0
Redhat Enterprise Linux Workstation 7.0
Redhat Enterprise Linux Server 7.0
Opensuse Leap 15.1
Opensuse Leap 15.0
NA
CVE-2010-2156
ISC DHCP 4.1 prior to 4.1.1-P1 and 4.0 prior to 4.0.2-P1 allows remote malicious users to cause a denial of service (server exit) via a zero-length client ID.
Isc Dhcp 4.1.1
Isc Dhcp 4.1.0
Isc Dhcp 4.0.0
Isc Dhcp 4.0.1
Isc Dhcp 4.0.2
1 EDB exploit
NA
CVE-2011-4868
The logging functionality in dhcpd in ISC DHCP prior to 4.2.3-P2, when using Dynamic DNS (DDNS) and issuing IPv6 addresses, does not properly handle the DHCPv6 lease structure, which allows remote malicious users to cause a denial of service (NULL pointer dereference and daemon c...
Isc Dhcp 4.2.1
Isc Dhcp 4.1.0
Isc Dhcp 4.0.0
Isc Dhcp 3.0
Isc Dhcp 3.0.6
Isc Dhcp 3.0.4
Isc Dhcp 3.0.3
Isc Dhcp 3.0.2
Isc Dhcp 3.0.1
Isc Dhcp
Isc Dhcp 4.2.3
Isc Dhcp 4.2.0
Isc Dhcp 3.1.0
Isc Dhcp 3.0.5
Isc Dhcp 4.2.2
NA
CVE-2011-4539
dhcpd in ISC DHCP 4.x prior to 4.2.3-P1 and 4.1-ESV prior to 4.1-ESV-R4 does not properly handle regular expressions in dhcpd.conf, which allows remote malicious users to cause a denial of service (daemon crash) via a crafted request packet.
Isc Dhcp 4.0
Isc Dhcp 4.0.0
Isc Dhcp 4.0.1
Isc Dhcp 4.0.2
Isc Dhcp 4.0.3
Isc Dhcp 4.1.1
Isc Dhcp 4.1.2
Isc Dhcp 4.2.0
Isc Dhcp 4.2.1
Isc Dhcp 4.2.2
Isc Dhcp 4.2.3
Isc Dhcp 4.1-esv
Canonical Ubuntu Linux 11.04
Canonical Ubuntu Linux 11.10
Debian Debian Linux 6.0
Debian Debian Linux 7.0
NA
CVE-2013-2494
libdns in ISC DHCP 4.2.x prior to 4.2.5-P1 allows remote name servers to cause a denial of service (memory consumption) via vectors involving a regular expression, as demonstrated by a memory-exhaustion attack against a machine running a dhcpd process, a related issue to CVE-2013...
Isc Dhcp 4.2.2
Isc Dhcp 4.2.0
Isc Dhcp 4.2.4
Isc Dhcp 4.2.1
Isc Dhcp 4.2.3
Isc Dhcp 4.2.5
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-33572
CVE-2024-24919
CVE-2024-0230
CVE-2024-32714
HTML injection
local file inclusion
CVE-2024-31098
CVE-2024-31244
privilege
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
NEXT »