CVE-2011-0413

Vulnerability Description

The DHCPv6 server in ISC DHCP 4.0.x and 4.1.x before 4.1.2-P1, 4.0-ESV and 4.1-ESV before 4.1-ESV-R1, and 4.2.x before 4.2.1b1 allows remote attackers to cause a denial of service (assertion failure and daemon crash) by sending a message over IPv6 for a declined and abandoned address.

CVSS Score

Affected Products

Related Weaknesses (CWE)

References

• http://lists.fedoraproject.org/pipermail/package-announce/2011-February/053644.hThird Party Advisory
• http://secunia.com/advisories/43006Third Party Advisory
• http://secunia.com/advisories/43104Third Party Advisory
• http://secunia.com/advisories/43167Third Party Advisory
• http://secunia.com/advisories/43354Third Party Advisory
• http://secunia.com/advisories/43613Third Party Advisory
• http://securitytracker.com/id?1024999Third Party AdvisoryVDB Entry
• http://www.debian.org/security/2011/dsa-2184Third Party Advisory
• http://www.isc.org/software/dhcp/advisories/cve-2011-0413Vendor Advisory
• http://www.kb.cert.org/vuls/id/686084Third Party AdvisoryUS Government Resource
• http://www.mandriva.com/security/advisories?name=MDVSA-2011:022Third Party Advisory
• http://www.osvdb.org/70680Broken Link
• http://www.redhat.com/support/errata/RHSA-2011-0256.htmlThird Party Advisory
• http://www.securityfocus.com/bid/46035Third Party AdvisoryVDB Entry
• http://www.vupen.com/english/advisories/2011/0235Permissions Required