CVE-2006-3122

CWE-3994 documents4 sources
Severity
5.0MEDIUM
EPSS
9.8%
top 7.05%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
1
ISC Dhcpd
Timeline
PublishedAug 9
Latest updateMay 1

Description

The supersede_lease function in memory.c in ISC DHCP (dhcpd) server 2.0pl5 allows remote attackers to cause a denial of service (application crash) via a DHCPDISCOVER packet with a 32 byte client-identifier, which causes the packet to be interpreted as a corrupt uid and causes the server to exit with "corrupt lease uid."

CVSS vector

AV:N/AC:L/C:N/I:N/A:PExploitability: 10.0 | Impact: 2.9

Affected Packages1 packages

NVDisc/dhcpd2.0pl5

Patches

Patch: secunia.comPatch: secunia.comPatch: www.debian.org

🔴Vulnerability Details

2
GHSA
GHSA-jgmg-r2qf-hx4v: The supersede_lease function in memory2022-05-01
CVEList
CVE-2006-3122: The supersede_lease function in memory2006-08-09

💥Exploits & PoCs

1
Exploit-DB
OCE 3121/3122 Printer - 'parser.exe' Denial of Service2006-04-26
CVE-2006-3122 (MEDIUM CVSS 5) | The supersede_lease function in mem | cvebase.io