CVE-2012-3570

CWE-119 โ€” Buffer Overflow8 documents7 sources
Severity
5.7MEDIUM
EPSS
3.7%
top 12.08%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
1
ISC Dhcp
Timeline
PublishedJul 25
Latest updateMay 17

Description

Buffer overflow in ISC DHCP 4.2.x before 4.2.4-P1, when DHCPv6 mode is enabled, allows remote attackers to cause a denial of service (segmentation fault and daemon exit) via a crafted client identifier parameter.

CVSS vector

AV:A/AC:M/C:N/I:N/A:CExploitability: 5.5 | Impact: 6.9

Affected Packages2 packages

โ–ถDebianisc-dhcp< 4.2.4-2+2
โ–ถNVDisc/dhcp5 versions+4

๐Ÿ”ดVulnerability Details

3
GHSA
GHSA-c23j-xrx5-hcrf: Buffer overflow in ISC DHCP 4โ†—2022-05-17
โ–ถ
OSV
CVE-2012-3570: Buffer overflow in ISC DHCP 4โ†—2012-07-25
โ–ถ
CVEList
CVE-2012-3570: Buffer overflow in ISC DHCP 4โ†—2012-07-25
โ–ถ

๐Ÿ“‹Vendor Advisories

2
Red Hat
dhcp: DoS in DHCPv6 due to error in handling malformed client identifiersโ†—2012-07-24
โ–ถ
Debian
CVE-2012-3570: isc-dhcp - Buffer overflow in ISC DHCP 4.2.x before 4.2.4-P1, when DHCPv6 mode is enabled, ...โ†—2012
โ–ถ

๐Ÿ’ฌCommunity

2
Bugzilla
CVE-2012-3570 CVE-2012-3571 CVE-2012-3954 dhcp various flaws [fedora-all]โ†—2012-07-24
โ–ถ
Bugzilla
CVE-2012-3570 dhcp: DoS in DHCPv6 due to error in handling malformed client identifiersโ†—2012-07-23
โ–ถ