Buffer Overflow Vulnerability in ISC DHCP 4.2.x
CVE-2012-3570

Currently unrated

Key Information:

Vendor: Isc
Status: Dhcp
Vendor: CVE Published:; 25 July 2012

What is CVE-2012-3570?

A buffer overflow vulnerability exists in ISC DHCP 4.2.x prior to version 4.2.4-P1 when DHCPv6 mode is enabled. This vulnerability allows attackers to remotely induce a denial of service condition, potentially leading to a segmentation fault and consequently causing the DHCP daemon to terminate unexpectedly. Attackers may exploit this flaw by sending specially crafted client identifier parameters, which could disrupt DHCP services and impact network functionality.

References

http://lists.opensuse.org/opensuse-updates/2012-08/msg000...

vendor-advisoryx_refsource_SUSE

http://www.mandriva.com/security/advisories?name=MDVSA-20...

vendor-advisoryx_refsource_MANDRIVA

http://security.gentoo.org/glsa/glsa-201301-06.xml

vendor-advisoryx_refsource_GENTOO

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Jul 25, 2012
Vulnerability Reserved
Jun 14, 2012

Isc

What is CVE-2012-3570?

References

Timeline