CVE-2011-4539
published 2011-12-08CVE-2011-4539: dhcpd in ISC DHCP 4.x before 4.2.3-P1 and 4.1-ESV before 4.1-ESV-R4 does not properly handle regular expressions in dhcpd.conf, which allows remote attackers…
PriorityP429medium5CVSS 2.0
AVNACLAuNCNINAP
EPSS
15.48%
96.4th percentile
dhcpd in ISC DHCP 4.x before 4.2.3-P1 and 4.1-ESV before 4.1-ESV-R4 does not properly handle regular expressions in dhcpd.conf, which allows remote attackers to cause a denial of service (daemon crash) via a crafted request packet.
Affected
17 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| canonical | ubuntu_linux | — | — |
| canonical | ubuntu_linux | — | — |
| debian | debian_linux | — | — |
| debian | debian_linux | — | — |
| debian | isc-dhcp | < isc-dhcp 4.2.2.dfsg.1-5 (bookworm) | isc-dhcp 4.2.2.dfsg.1-5 (bookworm) |
| isc | dhcp | — | — |
| isc | dhcp | — | — |
| isc | dhcp | — | — |
| isc | dhcp | — | — |
| isc | dhcp | — | — |
| isc | dhcp | — | — |
| isc | dhcp | — | — |
| isc | dhcp | — | — |
| isc | dhcp | — | — |
| isc | dhcp | — | — |
| isc | dhcp | — | — |
| isc | dhcp | — | — |
CVSS provenance
nvdv2.05.0MEDIUMAV:N/AC:L/Au:N/C:N/I:N/A:P
osv5.0MEDIUM
vendor_debian5.0LOW
vendor_redhat5.0MEDIUM
Stop checking back — get the weekly exploitation signal.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
Ubuntu
DHCP vulnerability
vendor_ubuntu·2011-12-15
CVE-2011-4539 DHCP vulnerability
Title: DHCP vulnerability
Summary: DHCP could be made to crash if it received specially crafted network
traffic.
It was discovered that the DHCP server incorrectly handled certain
malformed packets when configured to evaluate regular expressions. A remote
attacker could use this issue to cause DHCP to crash, resulting in a denial
of service.
Instructions: In general, a standard system update will make all the necessary changes.
Red Hat
dhcp: DoS due to processing certain regular expressions
vendor_redhat·2011-12-07·CVSS 5.0
CVE-2011-4539 [MEDIUM] dhcp: DoS due to processing certain regular expressions
dhcp: DoS due to processing certain regular expressions
dhcpd in ISC DHCP 4.x before 4.2.3-P1 and 4.1-ESV before 4.1-ESV-R4 does not properly handle regular expressions in dhcpd.conf, which allows remote attackers to cause a denial of service (daemon crash) via a crafted request packet.
Statement: This issue did not affect the versions of dhcp as shipped with Red Hat Enterprise Linux 4 and 5.
Package: dhcp (Red Hat Enterprise Linux 4) - Not affected
Package: dhcp (Red Hat Enterprise Linux 5) - Not affected
Debian
CVE-2011-4539: isc-dhcp - dhcpd in ISC DHCP 4.x before 4.2.3-P1 and 4.1-ESV before 4.1-ESV-R4 does not pro...
vendor_debian·2011·CVSS 5.0
CVE-2011-4539 [MEDIUM] CVE-2011-4539: isc-dhcp - dhcpd in ISC DHCP 4.x before 4.2.3-P1 and 4.1-ESV before 4.1-ESV-R4 does not pro...
dhcpd in ISC DHCP 4.x before 4.2.3-P1 and 4.1-ESV before 4.1-ESV-R4 does not properly handle regular expressions in dhcpd.conf, which allows remote attackers to cause a denial of service (daemon crash) via a crafted request packet.
Scope: local
bookworm: resolved (fixed in 4.2.2.dfsg.1-5)
bullseye: resolved (fixed in 4.2.2.dfsg.1-5)
sid: resolved (fixed in 4.2.2.dfsg.1-5)
trixie: resolved (fixed in 4.2.2.dfsg.1-5)
GHSA
GHSA-4mm2-hqgc-vvw9: dhcpd in ISC DHCP 4
ghsa_unreviewed·2022-05-13
CVE-2011-4539 [MEDIUM] CWE-20 GHSA-4mm2-hqgc-vvw9: dhcpd in ISC DHCP 4
dhcpd in ISC DHCP 4.x before 4.2.3-P1 and 4.1-ESV before 4.1-ESV-R4 does not properly handle regular expressions in dhcpd.conf, which allows remote attackers to cause a denial of service (daemon crash) via a crafted request packet.
OSV
CVE-2011-4539: dhcpd in ISC DHCP 4
osv·2011-12-08·CVSS 5.0
CVE-2011-4539 [MEDIUM] CVE-2011-4539: dhcpd in ISC DHCP 4
dhcpd in ISC DHCP 4.x before 4.2.3-P1 and 4.1-ESV before 4.1-ESV-R4 does not properly handle regular expressions in dhcpd.conf, which allows remote attackers to cause a denial of service (daemon crash) via a crafted request packet.
No detection rules found.
No public exploits indexed.
Bugzilla
CVE-2011-4539 dhcp: DoS due to processing certain regular expressions [fedora-all]
bugzilla·2011-12-09·CVSS 5.0
CVE-2011-4539 [MEDIUM] CVE-2011-4539 dhcp: DoS due to processing certain regular expressions [fedora-all]
CVE-2011-4539 dhcp: DoS due to processing certain regular expressions [fedora-all]
This is an automatically created tracking bug! It was created to ensure
that one or more security vulnerabilities are fixed in affected Fedora
versions.
For comments that are specific to the vulnerability please use bugs filed
against "Security Response" product referenced in the "Blocks" field.
For more information see:
http://fedoraproject.org/wiki/Security/TrackingBugs
When creating a Bodhi update request, please include this bug ID and the
bug IDs of this bug's parent bugs filed against the "Security Response"
product (the top-level CVE bugs). Please mention the CVE IDs being fixed
in the RPM changelog when available.
Bodhi update submission link:
https://admin.fedoraproject.org/updates/new/?type_=s
Bugzilla
CVE-2011-4539 dhcp: DoS due to processing certain regular expressions
bugzilla·2011-12-07·CVSS 5.0
CVE-2011-4539 [MEDIUM] CVE-2011-4539 dhcp: DoS due to processing certain regular expressions
CVE-2011-4539 dhcp: DoS due to processing certain regular expressions
It was reported [1] that ISC dhcpd suffered from a bug related to processing an evaluated regular expression. If an attacker were able to send a DHCP Request packet, either directly or through a relay, they could remotely crash dhcpd if that server was configured to evaluate expressions using a regular expression (such as "~=" or "~~" comparison operators). No further details have been released as of yet.
Upstream indicates that 4.0.x and higher, including all EOL versions back to 4.0, 4.1-ESV, and 4.2.x, are affected and is corrected in 4.1-ESV-R4 and 4.2.3-P1.
This flaw cannot be triggered if regular expressions are not used in the server's configuration files.
[1] http://www.isc.org/software/dhcp/advisories/cve-20
http://lists.fedoraproject.org/pipermail/package-announce/2011-December/070980.htmlhttp://lists.fedoraproject.org/pipermail/package-announce/2012-January/071549.htmlhttp://lists.opensuse.org/opensuse-updates/2011-12/msg00006.htmlhttp://secunia.com/advisories/47153http://secunia.com/advisories/47178http://security.gentoo.org/glsa/glsa-201301-06.xmlhttp://www.debian.org/security/2012/dsa-2519http://www.mandriva.com/security/advisories?name=MDVSA-2011:182http://www.securityfocus.com/bid/50971http://www.securitytracker.com/id?1026393http://www.ubuntu.com/usn/USN-1309-1https://exchange.xforce.ibmcloud.com/vulnerabilities/71680https://www.isc.org/software/dhcp/advisories/cve-2011-4539http://lists.fedoraproject.org/pipermail/package-announce/2011-December/070980.htmlhttp://lists.fedoraproject.org/pipermail/package-announce/2012-January/071549.htmlhttp://lists.opensuse.org/opensuse-updates/2011-12/msg00006.htmlhttp://secunia.com/advisories/47153http://secunia.com/advisories/47178http://security.gentoo.org/glsa/glsa-201301-06.xmlhttp://www.debian.org/security/2012/dsa-2519http://www.mandriva.com/security/advisories?name=MDVSA-2011:182http://www.securityfocus.com/bid/50971http://www.securitytracker.com/id?1026393http://www.ubuntu.com/usn/USN-1309-1https://exchange.xforce.ibmcloud.com/vulnerabilities/71680https://www.isc.org/software/dhcp/advisories/cve-2011-4539
2011-12-08
Published