ISC DHCP Denial of service Vulnerability

Last Update Date: 2 Apr 2013 15:00 Release Date: 2 Apr 2013 4266 Views

RISK: Medium Risk

Medium Risk

TYPE: Servers - Network Management

TYPE: Network Management

A vulnerability has been identified in ISC DHCP, which can be exploited by malicious user to to cause denial of service.

Exploitation of a memory exhaustion bug in libdns is theoretically possible in ISC DHCP 4.2, which uses the library from BIND 9 for Dynamic DNS.

 

Servers which are targeted by a successful attack will exhaust all memory available to the server process, which is likely to crash the DHCP server and may affect other processes running on the same physical machine when system memory is exhausted.

Impact

  • Denial of Service

System / Technologies affected

  • versions of DHCP 4.2

Solutions

Before installation of the software, please visit the software manufacturer web-site for more details.

  • upgrade to DHCP 4.2.5-P1

Vulnerability Identifier

Source

Related Link

Share with

Previous

ISC BIND Regular Expression Handling Denial of Service Vulnerability

28 Mar 2013 3596 Views

Next

McAfee Firewall Enterprise BIND Regular Expression Handling Denial of Service Vulnerability

2 Apr 2013 4172 Views

We use cookies to give you the best possible experience on our website. By continuing to browse this site, you give consent for cookies to be used. For more details please read our Cookie Policy.

PRIVACY POLICY