CVE-2009-1892
published 2009-07-17CVE-2009-1892: dhcpd in ISC DHCP 3.0.4 and 3.1.1, when the dhcp-client-identifier and hardware ethernet configuration settings are both used, allows remote attackers to cause…
PriorityP425medium5CVSS 2.0
AVNACLAuNCNINAP
EPSS
8.57%
94.4th percentile
dhcpd in ISC DHCP 3.0.4 and 3.1.1, when the dhcp-client-identifier and hardware ethernet configuration settings are both used, allows remote attackers to cause a denial of service (daemon crash) via unspecified requests.
Affected
6 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| debian | isc-dhcp | < isc-dhcp 3.1.2p1-2 (bookworm) | isc-dhcp 3.1.2p1-2 (bookworm) |
| isc | dhcp | — | — |
| isc | dhcp | — | — |
| isc | dhcp | — | — |
| isc | dhcp | — | — |
| isc | dhcp | — | — |
CVSS provenance
nvdv2.05.0MEDIUMAV:N/AC:L/Au:N/C:N/I:N/A:P
osv5.0MEDIUM
vendor_debian5.0LOW
vendor_redhat5.0MEDIUM
Stop checking back — get the weekly exploitation signal.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
GHSA
GHSA-q526-8q52-r7jc: dhcpd in ISC DHCP 3
ghsa_unreviewed·2022-05-02
CVE-2009-1892 [MEDIUM] GHSA-q526-8q52-r7jc: dhcpd in ISC DHCP 3
dhcpd in ISC DHCP 3.0.4 and 3.1.1, when the dhcp-client-identifier and hardware ethernet configuration settings are both used, allows remote attackers to cause a denial of service (daemon crash) via unspecified requests.
OSV
CVE-2009-1892: dhcpd in ISC DHCP 3
osv·2009-07-17·CVSS 5.0
CVE-2009-1892 [MEDIUM] CVE-2009-1892: dhcpd in ISC DHCP 3
dhcpd in ISC DHCP 3.0.4 and 3.1.1, when the dhcp-client-identifier and hardware ethernet configuration settings are both used, allows remote attackers to cause a denial of service (daemon crash) via unspecified requests.
Red Hat
dhcp: DoS/abort in some configs with client-identifier and hardware address host specifications
vendor_redhat·2009-07-14·CVSS 5.0
CVE-2009-1892 [MEDIUM] dhcp: DoS/abort in some configs with client-identifier and hardware address host specifications
dhcp: DoS/abort in some configs with client-identifier and hardware address host specifications
dhcpd in ISC DHCP 3.0.4 and 3.1.1, when the dhcp-client-identifier and hardware ethernet configuration settings are both used, allows remote attackers to cause a denial of service (daemon crash) via unspecified requests.
Statement: Not vulnerable. Red Hat Enterprise Linux 3, 4, and 5 provide earlier versions of ISC DHCP which are not vulnerable to this issue.
Debian
CVE-2009-1892: isc-dhcp - dhcpd in ISC DHCP 3.0.4 and 3.1.1, when the dhcp-client-identifier and hardware ...
vendor_debian·2009·CVSS 5.0
CVE-2009-1892 [MEDIUM] CVE-2009-1892: isc-dhcp - dhcpd in ISC DHCP 3.0.4 and 3.1.1, when the dhcp-client-identifier and hardware ...
dhcpd in ISC DHCP 3.0.4 and 3.1.1, when the dhcp-client-identifier and hardware ethernet configuration settings are both used, allows remote attackers to cause a denial of service (daemon crash) via unspecified requests.
Scope: local
bookworm: resolved (fixed in 3.1.2p1-2)
bullseye: resolved (fixed in 3.1.2p1-2)
sid: resolved (fixed in 3.1.2p1-2)
trixie: resolved (fixed in 3.1.2p1-2)
No detection rules found.
No public exploits indexed.
Bugzilla
CVE-2009-1892 dhcp: DoS/abort in some configs with client-identifier and hardware address host specifications
bugzilla·2009-07-15·CVSS 10.0
CVE-2009-1892 [CRITICAL] CVE-2009-1892 dhcp: DoS/abort in some configs with client-identifier and hardware address host specifications
CVE-2009-1892 dhcp: DoS/abort in some configs with client-identifier and hardware address host specifications
This is an automatically created tracking bug! It was created to ensure that one or more security vulnerabilities are fixed in all affected branches.
For comments that are specific to the vulnerability please use bugs filed against "Security Response" product referenced in "Blocks" field.
bug #509845: CVE-2009-1892 dhcp: DoS/abort in some configs with client-identifier and hardware address host specifications
When creating a Bodhi update request, please include the bug IDs of the respective parent bugs filed against the "Security Response" product.
Please mention CVE ids in the RPM changelog when available and only close this bug once all affected Fedora versions are fixed.
Bo
Bugzilla
CVE-2009-1892 dhcp: DoS/abort in some configs with client-identifier and hardware address host specifications
bugzilla·2009-07-06·CVSS 5.0
CVE-2009-1892 [MEDIUM] CVE-2009-1892 dhcp: DoS/abort in some configs with client-identifier and hardware address host specifications
CVE-2009-1892 dhcp: DoS/abort in some configs with client-identifier and hardware address host specifications
Christoph Biedl reported:
isc-dchpd aborts when receiving a DHCP request with a "dhcp-client-
identifier" in certain configurations. This requires mixing host
definitions using "dhcp-client-identifier" and "hardware ethernet",
for a host that is not reachable via the interface the request is
received from.
Christoph confirmed the problem in versions 3.1.1, 3.1.2, 4.0.1, 4.0.2b1, and
4.1.1b1, and says 3.0.7 is not affected.
Discussion:
Full report from Christoph:
Summary
isc-dchpd aborts when receiving a DHCP request with a "dhcp-client-
identifier" in certain configurations. This requires mixing host
definitions using "dhcp-client-identifier" and "hardware ethernet",
for a ho
http://secunia.com/advisories/35830http://secunia.com/advisories/35851http://secunia.com/advisories/36457http://secunia.com/advisories/37342http://www.debian.org/security/2009/dsa-1833http://www.mandriva.com/security/advisories?name=MDVSA-2009:154http://www.securityfocus.com/bid/35669https://exchange.xforce.ibmcloud.com/vulnerabilities/51717https://www.redhat.com/archives/fedora-package-announce/2009-August/msg01177.htmlhttps://www.redhat.com/archives/fedora-package-announce/2009-November/msg00340.htmlhttp://secunia.com/advisories/35830http://secunia.com/advisories/35851http://secunia.com/advisories/36457http://secunia.com/advisories/37342http://www.debian.org/security/2009/dsa-1833http://www.mandriva.com/security/advisories?name=MDVSA-2009:154http://www.securityfocus.com/bid/35669https://exchange.xforce.ibmcloud.com/vulnerabilities/51717https://www.redhat.com/archives/fedora-package-announce/2009-August/msg01177.htmlhttps://www.redhat.com/archives/fedora-package-announce/2009-November/msg00340.html
2009-07-17
Published