Denial of Service Vulnerability in ISC DHCP Daemon
CVE-2011-4868

Currently unrated

Key Information:

Vendor: Isc
Status: Dhcp
Vendor: CVE Published:; 15 January 2012

What is CVE-2011-4868?

The logging functionality in ISC DHCP versions prior to 4.2.3-P2 exhibits a vulnerability when handling DHCPv6 leases. An attacker can exploit this flaw by sending specially crafted packets during lease-status updates, leading to a NULL pointer dereference that may crash the dhcpd daemon. This disruption affects service availability, making it imperative for systems utilizing Dynamic DNS with IPv6 to apply the relevant updates and patches to maintain operational integrity.

References

https://kb.isc.org/article/AA-00705

x_refsource_CONFIRM

https://www.isc.org/software/dhcp/advisories/cve-2011-4868

x_refsource_CONFIRM

https://deepthought.isc.org/article/AA-00595

x_refsource_CONFIRM

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Jan 15, 2012
Vulnerability Reserved
Dec 19, 2011

Isc

What is CVE-2011-4868?

References

Timeline