Signature Detail
This site is deprecated. Please CLICK HERE for latest updates
Short Name |
DHCP:ISC-ZERO-LEN-DOS |
|---|---|
Severity |
Minor |
Recommended |
No |
Recommended Action |
Drop |
Category |
DHCP |
Keywords |
ISC DHCP Server Zero Length Client ID Denial of Service |
Release Date |
2010/10/05 |
Update Number |
1785 |
Supported Platforms |
idp-4.0+, isg-3.0+, j-series-9.5+, mx-11.4+, srx-12.1+, srx-branch-12.1+, vmx-17.4+, vsrx-12.1+, vsrx3bsd-18.2+ |
DHCP: ISC DHCP Server Zero Length Client ID Denial of Service
This signature detects attempts to exploit a known vulnerability in ISC DHCP Server. It is due to a design error while parsing request containing a zero length client identifier. Remote unauthenticated attackers can exploit this by sending crafted packets to the target DHCP server. A successful attack can result in a denial-of-service condition.
Extended Description
ISC DHCP Server is prone to a remote denial-of-service vulnerability. Attackers can exploit this issue to cause the server to terminate, thus denying service to legitimate users. Versions prior to ISC DHCP Server 4.0.2-P1 and 4.1.1-P1 are vulnerable.
Affected Products
- Isc dhcpd 4.0
- Isc dhcpd 4.0.1P1
- Isc dhcpd 4.1
- Isc dhcpd 4.1.1
- Mandriva linux_mandrake 2009.1
- Mandriva linux_mandrake 2009.1 X86 64
- Mandriva linux_mandrake 2010.0
- Mandriva linux_mandrake 2010.0 X86 64
- Pardus linux_2009
- Red_hat fedora 11
- Red_hat fedora 12
- Red_hat fedora 13
References
- BugTraq: 40775
- CVE: CVE-2010-2156
- URL: https://www.isc.org/software/dhcp/advisories/cve-2010-2156