Vulnerability CVE-2012-3570


Published: 2012-07-25

Description:
Buffer overflow in ISC DHCP 4.2.x before 4.2.4-P1, when DHCPv6 mode is enabled, allows remote attackers to cause a denial of service (segmentation fault and daemon exit) via a crafted client identifier parameter.

CVSS2 => (AV:A/AC:M/Au:N/C:N/I:N/A:C)

CVSS Base Score
Impact Subscore
Exploitability Subscore
5.7/10
6.9/10
5.5/10
Exploit range
Attack complexity
Authentication
Adjacent network
Medium
No required
Confidentiality impact
Integrity impact
Availability impact
None
None
Complete
Affected software
ISC -> DHCP 

 References:
http://lists.opensuse.org/opensuse-updates/2012-08/msg00030.html
http://security.gentoo.org/glsa/glsa-201301-06.xml
http://www.mandriva.com/security/advisories?name=MDVSA-2012:115
http://www.securityfocus.com/bid/54665
https://kb.isc.org/article/AA-00714

Copyright 2024, cxsecurity.com

 

Back to Top