cbcvebase.
CVE-2011-2749
published 2011-08-15

CVE-2011-2749: The server in ISC DHCP 3.x and 4.x before 4.2.2, 3.1-ESV before 3.1-ESV-R3, and 4.1-ESV before 4.1-ESV-R3 allows remote attackers to cause a denial of service…

PriorityP350high7.8CVSS 2.0
AVNACLAuNCNINAC
EPSS
38.77%
98.4th percentile
The server in ISC DHCP 3.x and 4.x before 4.2.2, 3.1-ESV before 3.1-ESV-R3, and 4.1-ESV before 4.1-ESV-R3 allows remote attackers to cause a denial of service (daemon exit) via a crafted BOOTP packet.

Affected

33 ranges· showing 25
VendorProductVersion rangeFixed in
canonicalubuntu_linux
canonicalubuntu_linux
canonicalubuntu_linux
canonicalubuntu_linux
debiandebian_linux
debiandebian_linux
debiandebian_linux
debianisc-dhcp< isc-dhcp 4.2.2-1 (bookworm)isc-dhcp 4.2.2-1 (bookworm)
iscdhcp
iscdhcp
iscdhcp
iscdhcp
iscdhcp
iscdhcp
iscdhcp
iscdhcp
iscdhcp
iscdhcp
iscdhcp
iscdhcp
iscdhcp
iscdhcp
iscdhcp
iscdhcp
iscdhcp

Detection & IOCsextracted from sources · hover to see the quote

  • A crafted BOOTP packet sent to the ISC DHCP server can trigger a daemon exit (denial of service); monitor for unexpected dhcpd process termination following receipt of BOOTP traffic.
  • The vulnerability is remotely exploitable with no authentication required; any host able to send BOOTP/DHCP packets (UDP/67) to the server is a potential attacker.
  • ·Affected versions are ISC DHCP 3.x and 4.x before 4.2.2, 3.1-ESV before 3.1-ESV-R3, and 4.1-ESV before 4.1-ESV-R3; ensure patched versions are deployed.

CVSS provenance

nvdv2.07.8HIGHAV:N/AC:L/Au:N/C:N/I:N/A:C
osv7.8HIGH
vendor_debian7.8HIGH
vendor_redhat7.8HIGH
Stop checking back — get the weekly exploitation signal.

Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.