Short Name |
DHCP:ISC-ZERO-LEN-DOS |
---|---|
Severity |
Minor |
Recommended |
No |
Recommended Action |
Drop |
Category |
DHCP |
Keywords |
ISC DHCP Server Zero Length Client ID Denial of Service |
Release Date |
2010/10/05 |
Update Number |
1785 |
Supported Platforms |
idp-4.0+, isg-3.0+, j-series-9.5+, mx-11.4+, srx-12.1+, srx-branch-12.1+, vmx-17.4+, vsrx-12.1+, vsrx3bsd-18.2+ |
This signature detects attempts to exploit a known vulnerability in ISC DHCP Server. It is due to a design error while parsing request containing a zero length client identifier. Remote unauthenticated attackers can exploit this by sending crafted packets to the target DHCP server. A successful attack can result in a denial-of-service condition.
ISC DHCP Server is prone to a remote denial-of-service vulnerability. Attackers can exploit this issue to cause the server to terminate, thus denying service to legitimate users. Versions prior to ISC DHCP Server 4.0.2-P1 and 4.1.1-P1 are vulnerable.