Denial of Service Vulnerability in ISC DHCP Products by ISC
CVE-2010-2156

Currently unrated

Key Information:

Vendor

Isc
Status
Dhcp
Vendor
CVE Published:
7 June 2010

Badges

๐Ÿ‘พ Exploit Exists๐ŸŸก Public PoC๐ŸŸฃ EPSS 86%

What is CVE-2010-2156?

A vulnerability in ISC DHCP versions 4.1 and 4.0 allows remote attackers to cause a denial of service by sending a request with a zero-length client ID. This leads to server crashes and impacts service availability, making the affected systems vulnerable to disruption and potential exploitation.

Exploit Proof of Concept (PoC)

PoC code is written by security researchers to demonstrate the vulnerability can be exploited. PoC code is also a key component for weaponization which could lead to ransomware.

CVE-2010-2156 - Proof of Concept

References

http://www.mandriva.com/security/advisories?name=MDVSA-20...
vendor-advisoryx_refsource_MANDRIVA
http://secunia.com/advisories/40116
third-party-advisoryx_refsource_SECUNIA
http://ftp.isc.org/isc/dhcp/dhcp-4.1.1-P1-RELNOTES
x_refsource_CONFIRM

EPSS Score

86% chance of being exploited in the next 30 days.

Timeline

  • ๐ŸŸก

    Public PoC available

  • ๐Ÿ‘พ

    Exploit known to exist

  • Vulnerability published

  • Vulnerability Reserved

.