CVE-2006-3122 - The supersede_lease function in memory.c in ISC DHCP (dhcpd) server 2.0pl5 allows remote attackers t

CVE-2006-3122

Summary

The supersede_lease function in memory.c in ISC DHCP (dhcpd) server 2.0pl5 allows remote attackers to cause a denial of service (application crash) via a DHCPDISCOVER packet with a 32 byte client-identifier, which causes the packet to be interpreted as a corrupt uid and causes the server to exit with "corrupt lease uid."

References

Vulnerable Configurations

cpe:2.3:a:isc:dhcpd:-:*:*:*:*:*:*:*
cpe:2.3:a:isc:dhcpd:-:*:*:*:*:*:*:*
cpe:2.3:a:isc:dhcpd:2.0.pl5:*:*:*:*:*:*:*
cpe:2.3:a:isc:dhcpd:2.0.pl5:*:*:*:*:*:*:*
cpe:2.3:a:isc:dhcpd:2.0pl5:*:*:*:*:*:*:*
cpe:2.3:a:isc:dhcpd:2.0pl5:*:*:*:*:*:*:*

CVSS

Base:	5.0 (as of 13-06-2011 - 04:00)
Impact:
Exploitability:

CWE

CWE-399

CAPEC

Access

Vector	Complexity	Authentication
NETWORK	LOW	NONE

Impact

Confidentiality	Integrity	Availability
NONE	NONE	PARTIAL

cvss-vector via4

AV:N/AC:L/Au:N/C:N/I:N/A:P

refmap via4

bid	19348
debian	DSA-1143
misc	http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=380273
openbsd	[3.9] 20060825 006: SECURITY FIX: August 25, 2006
sectrack	1016755
secunia	21345 21363 21655
vupen	ADV-2006-3158

Last major update

13-06-2011 - 04:00

Published

09-08-2006 - 22:04

Last modified

13-06-2011 - 04:00