Denial of Service Vulnerability in ISC DHCP by Internet Systems Consortium
CVE-2012-3955

Currently unrated

Key Information:

Vendor

Isc
Status
Dhcp
Vendor
CVE Published:
14 September 2012

What is CVE-2012-3955?

The ISC DHCP software prior to v4.1-ESV-R7 and v4.2.4-P2 is vulnerable to a denial of service attack. Under certain circumstances, a malicious remote attacker can exploit this vulnerability by manipulating the lease expiration time of an IPv6 lease, leading to the crash of the DHCP daemon. This can disrupt network services reliant on DHCP, posing significant operational challenges for affected systems.

References

http://lists.fedoraproject.org/pipermail/package-announce...
vendor-advisoryx_refsource_FEDORA
http://lists.opensuse.org/opensuse-updates/2012-09/msg001...
vendor-advisoryx_refsource_SUSE
http://www.ubuntu.com/usn/USN-1571-1
vendor-advisoryx_refsource_UBUNTU

EPSS Score

20% chance of being exploited in the next 30 days.

Timeline

  • Vulnerability published

  • Vulnerability Reserved

.