Signature Detail
Short Name |
DHCP:ISC-ZERO-LEN-DOS |
|---|---|
Severity |
Medium |
Recommended |
No |
Recommended Action |
Drop |
Category |
DHCP |
Keywords |
ISC DHCP Server Zero Length Client ID Denial of Service |
Release Date |
2010/10/05 |
Update Number |
1785 |
Supported Platforms |
idp-4.0+, isg-3.0+, j-series-9.5+, mx-9.4+, srx-9.2+, srx-branch-9.4+, vsrx-12.1+ |
DHCP: ISC DHCP Server Zero Length Client ID Denial of Service
This signature detects attempts to exploit a known vulnerability in ISC DHCP Server. It is due to a design error while parsing request containing a zero length client identifier. Remote unauthenticated attackers can exploit this by sending crafted packets to the target DHCP server. A successful attack can result in a denial-of-service condition.
Extended Description
ISC DHCP Server is prone to a remote denial-of-service vulnerability. Attackers can exploit this issue to cause the server to terminate, thus denying service to legitimate users. Versions prior to ISC DHCP Server 4.0.2-P1 and 4.1.1-P1 are vulnerable.
Affected Products
- ISC DHCPD 4.0
- ISC DHCPD 4.0.1P1
- ISC DHCPD 4.1
- ISC DHCPD 4.1.1
- Mandriva Linux Mandrake 2009.1
- Mandriva Linux Mandrake 2009.1 X86 64
- Mandriva Linux Mandrake 2010.0
- Mandriva Linux Mandrake 2010.0 X86 64
- Pardus Linux 2009
- Red Hat Fedora 11
- Red Hat Fedora 12
- Red Hat Fedora 13
References
- BugTraq: 40775
- CVE: CVE-2010-2156
- URL: https://www.isc.org/software/dhcp/advisories/cve-2010-2156