CVE-2011-4868

Currently unrated

Key Information:

Vendor: Isc
Status: Dhcp
Vendor: CVE Published:; 15 January 2012

Summary

The logging functionality in dhcpd in ISC DHCP before 4.2.3-P2, when using Dynamic DNS (DDNS) and issuing IPv6 addresses, does not properly handle the DHCPv6 lease structure, which allows remote attackers to cause a denial of service (NULL pointer dereference and daemon crash) via crafted packets related to a lease-status update.

References

https://kb.isc.org/article/AA-00705

x_refsource_CONFIRM

https://www.isc.org/software/dhcp/advisories/cve-2011-4868

x_refsource_CONFIRM

https://deepthought.isc.org/article/AA-00595

x_refsource_CONFIRM

Timeline

Vulnerability published
Jan 15, 2012
Vulnerability Reserved
Dec 19, 2011