CVE-2010-3616
published 2010-12-17CVE-2010-3616: ISC DHCP server 4.2 before 4.2.0-P2, when configured to use failover partnerships, allows remote attackers to cause a denial of service…
PriorityP427medium5CVSS 2.0
AVNACLAuNCNINAP
EPSS
7.95%
94.0th percentile
ISC DHCP server 4.2 before 4.2.0-P2, when configured to use failover partnerships, allows remote attackers to cause a denial of service (communications-interrupted state and DHCP client service loss) by connecting to a port that is only intended for a failover peer, as demonstrated by a Nagios check_tcp process check to TCP port 520.
Affected
2 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| debian | isc-dhcp | — | — |
| isc | dhcp | — | — |
CVSS provenance
nvdv2.05.0MEDIUMAV:N/AC:L/Au:N/C:N/I:N/A:P
vendor_debian5.0LOW
vendor_redhat5.0MEDIUM
Stop checking back — get the weekly exploitation signal.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
Red Hat
dhcp: server hangs with TCP to failover peer port
vendor_redhat·2010-12-07·CVSS 5.0
CVE-2010-3616 [MEDIUM] dhcp: server hangs with TCP to failover peer port
dhcp: server hangs with TCP to failover peer port
ISC DHCP server 4.2 before 4.2.0-P2, when configured to use failover partnerships, allows remote attackers to cause a denial of service (communications-interrupted state and DHCP client service loss) by connecting to a port that is only intended for a failover peer, as demonstrated by a Nagios check_tcp process check to TCP port 520.
Statement: Not vulnerable. This issue did not affect the versions of dhcp as shipped with Red Hat Enterprise Linux 3, 4, 5, or 6.
Package: dhcp (Red Hat Enterprise Linux 5) - Not affected
Package: dhcp (Red Hat Enterprise Linux 6) - Not affected
Debian
CVE-2010-3616: isc-dhcp - ISC DHCP server 4.2 before 4.2.0-P2, when configured to use failover partnership...
vendor_debian·2010·CVSS 5.0
CVE-2010-3616 [MEDIUM] CVE-2010-3616: isc-dhcp - ISC DHCP server 4.2 before 4.2.0-P2, when configured to use failover partnership...
ISC DHCP server 4.2 before 4.2.0-P2, when configured to use failover partnerships, allows remote attackers to cause a denial of service (communications-interrupted state and DHCP client service loss) by connecting to a port that is only intended for a failover peer, as demonstrated by a Nagios check_tcp process check to TCP port 520.
Scope: local
bookworm: resolved
bullseye: resolved
sid: resolved
trixie: resolved
GHSA
GHSA-vgq6-5774-xvfp: ISC DHCP server 4
ghsa_unreviewed·2022-05-17
CVE-2010-3616 [MEDIUM] CWE-20 GHSA-vgq6-5774-xvfp: ISC DHCP server 4
ISC DHCP server 4.2 before 4.2.0-P2, when configured to use failover partnerships, allows remote attackers to cause a denial of service (communications-interrupted state and DHCP client service loss) by connecting to a port that is only intended for a failover peer, as demonstrated by a Nagios check_tcp process check to TCP port 520.
No detection rules found.
No public exploits indexed.
Bugzilla
CVE-2010-3616 dhcp: server hangs with TCP to failover peer port
bugzilla·2010-12-11·CVSS 5.0
CVE-2010-3616 [MEDIUM] CVE-2010-3616 dhcp: server hangs with TCP to failover peer port
CVE-2010-3616 dhcp: server hangs with TCP to failover peer port
A flaw was found in ISC's dhcpd [1] where, if a server receives a TCP connection on a port that has been configured for communication with a failover peer, it would be come unresponsive to all normal DHCP protocol traffic. This will result in the server no longer providing DHCP services to clients until it is restarted.
This flaw only affects DHCP version 4.2 and is corrected in DHCP 4.2.0-P2 [2]. Previous versions of DHCP are not vulnerable.
Only current Fedora 14 and Rawhide ship dhcp-4.2.0 and are vulnerable to this issue.
[1] http://www.pubbs.net/201012/dhcp/9981-nagios-checktcp-kills-failover-then-dhcp-failure.html
[2] https://www.isc.org/software/dhcp/advisories/cve-2010-3616
Statement:
Not vulnerable. This issue d
Bugzilla
CVE-2010-3616 dhcp: server hangs with TCP to failover peer port [fedora-14]
bugzilla·2010-12-11·CVSS 5.0
CVE-2010-3616 [MEDIUM] CVE-2010-3616 dhcp: server hangs with TCP to failover peer port [fedora-14]
CVE-2010-3616 dhcp: server hangs with TCP to failover peer port [fedora-14]
fedora-14 tracking bug for dhcp: see blocks bug list for full details of the security issue(s).
This bug is never intended to be made public, please put any public notes
in the 'blocks' bugs.
[bug automatically created by: add-tracking-bugs]
Discussion:
dhcp-4.2.0-16.P2.fc14 has been submitted as an update for Fedora 14.
https://admin.fedoraproject.org/updates/dhcp-4.2.0-16.P2.fc14
---
dhcp-4.2.0-16.P2.fc14 has been pushed to the Fedora 14 testing repository. If problems still persist, please make note of it in this bug report.
If you want to test the update, you can install it with
su -c 'yum --enablerepo=updates-testing update dhcp'. You can provide feedback for this update here: https://admin.fedoraproje
http://lists.fedoraproject.org/pipermail/package-announce/2010-December/052329.htmlhttp://secunia.com/advisories/42618http://secunia.com/advisories/42682http://www.kb.cert.org/vuls/id/159528http://www.mandriva.com/security/advisories?name=MDVSA-2011:001http://www.securityfocus.com/bid/45360http://www.securitytracker.com/id?1024862http://www.vupen.com/english/advisories/2010/3208http://www.vupen.com/english/advisories/2011/0052https://lists.isc.org/pipermail/dhcp-users/2010-December/012368.htmlhttps://www.isc.org/software/dhcp/advisories/cve-2010-3616http://lists.fedoraproject.org/pipermail/package-announce/2010-December/052329.htmlhttp://secunia.com/advisories/42618http://secunia.com/advisories/42682http://www.kb.cert.org/vuls/id/159528http://www.mandriva.com/security/advisories?name=MDVSA-2011:001http://www.securityfocus.com/bid/45360http://www.securitytracker.com/id?1024862http://www.vupen.com/english/advisories/2010/3208http://www.vupen.com/english/advisories/2011/0052https://lists.isc.org/pipermail/dhcp-users/2010-December/012368.htmlhttps://www.isc.org/software/dhcp/advisories/cve-2010-3616
2010-12-17
Published