Denial of Service Vulnerability in ISC DHCP by Internet Systems Consortium
CVE-2013-2494

Currently unrated

Key Information:

Vendor: Isc
Status: Dhcp
Vendor: CVE Published:; 28 March 2013

What is CVE-2013-2494?

The vulnerability in ISC DHCP prior to version 4.2.5-P1 allows attackers to exploit the libdns component, leading to potential denial of service on affected machines. By manipulating regular expressions, remote name servers can trigger significant memory consumption in the dhcpd process, resulting in service disruption. This issue highlights the importance of updating to the latest software versions to mitigate such risks.

References

https://kb.isc.org/article/AA-00880/

x_refsource_CONFIRM

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability Reserved
Oct 3, 2022
Vulnerability published
Mar 28, 2013

Isc

What is CVE-2013-2494?

References

Timeline