ISC DHCP DHCPv6 Dynamic DNS Remote Denial of Service Vulnerability

Last Update Date: 18 Jan 2012 14:30 Release Date: 18 Jan 2012 5551 Views

RISK: High Risk

High Risk

TYPE: Servers - Network Management

TYPE: Network Management

A vulnerability has been identified in ISC DHCP, which can be exploited by malicious people to cause a segmentation fault in ISC DHCP servers using IPv6 and Dynamic DNS, resulting in denial of service to clients.  Due to improper handling of a DHCPv6 lease structure, ISC DHCP servers that are serving IPv6 address pools AND using Dynamic DNS can encounter a segmentation fault error while updating lease status under certain conditions. The potential exists for this condition to be intentionally triggered, resulting in effective denial of service to clients expecting service from the affected server.

Impact

  • Denial of Service

System / Technologies affected

  • ISC DHCP 4.2.x

Solutions

Before installation of the software, please visit the software manufacturer web-site for more details.

  • Upgrade to ISC DHCP 4.2.3-P2

Vulnerability Identifier

Source

Related Link

Share with

Previous

7-Technologies Interactive Graphical SCADA System Insecure Library Loading Vulnerability

18 Jan 2012 5413 Views

Next

Apache Tomcat Request Object Recycle Security Bypass Vulnerability

18 Jan 2012 5414 Views

We use cookies to give you the best possible experience on our website. By continuing to browse this site, you give consent for cookies to be used. For more details please read our Cookie Policy.

PRIVACY POLICY