Isc Dhcp vulnerabilities
25 known vulnerabilities affecting isc/dhcp.
Total CVEs
25
CISA KEV
0
Public exploits
4
Exploited in wild
0
Severity breakdown
CRITICAL1HIGH9MEDIUM14LOW1
Vulnerabilities
Page 2 of 2
CVE-2010-3611P4MEDIUMCVSS 4.3v4.0v4.0.0+4 more2010-11-04
CVE-2010-3611 [MEDIUM] CVE-2010-3611: ISC DHCP server 4.0 before 4.0.2, 4.1 before 4.1.2, and 4.2 before 4.2.0-P1 allows remote attackers
ISC DHCP server 4.0 before 4.0.2, 4.1 before 4.1.2, and 4.2 before 4.2.0-P1 allows remote attackers to cause a denial of service (NULL pointer dereference and crash) via a DHCPv6 packet containing a Relay-Forward message without an address in the Relay-Forward link-address field.
nvd
CVE-2011-4868P4MEDIUMCVSS 6.1≤ 4.2.3v3.0+13 more2012-01-15
CVE-2011-4868 [MEDIUM] CWE-399 CVE-2011-4868: The logging functionality in dhcpd in ISC DHCP before 4.2.3-P2, when using Dynamic DNS (DDNS) and is
The logging functionality in dhcpd in ISC DHCP before 4.2.3-P2, when using Dynamic DNS (DDNS) and issuing IPv6 addresses, does not properly handle the DHCPv6 lease structure, which allows remote attackers to cause a denial of service (NULL pointer dereference and daemon crash) via crafted packets related to a lease-status update.
nvd
CVE-2009-1893P4MEDIUMCVSS 6.9v3.0.12009-07-17
CVE-2009-1893 [MEDIUM] CWE-59 CVE-2009-1893: The configtest function in the Red Hat dhcpd init script for DHCP 3.0.1 in Red Hat Enterprise Linux
The configtest function in the Red Hat dhcpd init script for DHCP 3.0.1 in Red Hat Enterprise Linux (RHEL) 3 allows local users to overwrite arbitrary files via a symlink attack on an unspecified temporary file, related to the "dhcpd -t" command.
nvd
CVE-2013-2494P4MEDIUMCVSS 4.9v4.2.0v4.2.1+4 more2013-03-28
CVE-2013-2494 [MEDIUM] CVE-2013-2494: libdns in ISC DHCP 4.2.x before 4.2.5-P1 allows remote name servers to cause a denial of service (me
libdns in ISC DHCP 4.2.x before 4.2.5-P1 allows remote name servers to cause a denial of service (memory consumption) via vectors involving a regular expression, as demonstrated by a memory-exhaustion attack against a machine running a dhcpd process, a related issue to CVE-2013-2266.
nvd
CVE-2012-3954P4LOWCVSS 3.3v4.1.0v4.1.1+7 more2012-07-25
CVE-2012-3954 [LOW] CWE-399 CVE-2012-3954: Multiple memory leaks in ISC DHCP 4.1.x and 4.2.x before 4.2.4-P1 and 4.1-ESV before 4.1-ESV-R6 allo
Multiple memory leaks in ISC DHCP 4.1.x and 4.2.x before 4.2.4-P1 and 4.1-ESV before 4.1-ESV-R6 allow remote attackers to cause a denial of service (memory consumption) by sending many requests.
nvd
← Previous2 / 2