Vulnerability Description
The logging functionality in dhcpd in ISC DHCP before 4.2.3-P2, when using Dynamic DNS (DDNS) and issuing IPv6 addresses, does not properly handle the DHCPv6 lease structure, which allows remote attackers to cause a denial of service (NULL pointer dereference and daemon crash) via crafted packets related to a lease-status update.
CVSS Score
MEDIUM
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Isc | Dhcp | <= 4.2.3 |
Related Weaknesses (CWE)
References
- http://security.gentoo.org/glsa/glsa-201301-06.xml
- https://deepthought.isc.org/article/AA-00595
- https://kb.isc.org/article/AA-00705
- https://www.isc.org/software/dhcp/advisories/cve-2011-4868Vendor Advisory
- http://security.gentoo.org/glsa/glsa-201301-06.xml
- https://deepthought.isc.org/article/AA-00595
- https://kb.isc.org/article/AA-00705
- https://www.isc.org/software/dhcp/advisories/cve-2011-4868Vendor Advisory
FAQ
What is CVE-2011-4868?
CVE-2011-4868 is a vulnerability with a CVSS score of 6.1 (MEDIUM). The logging functionality in dhcpd in ISC DHCP before 4.2.3-P2, when using Dynamic DNS (DDNS) and issuing IPv6 addresses, does not properly handle the DHCPv6 lease structure, which allows remote attac...
How severe is CVE-2011-4868?
CVE-2011-4868 has been rated MEDIUM with a CVSS base score of 6.1/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2011-4868?
Check the references section above for vendor advisories and patch information. Affected products include: Isc Dhcp.