Juniper Networks
Solutions
Products & Services
Company
Partners
Support
Education

Signature Detail

Security Intelligence Center
Signatures
Print

Short Name

 DHCP:SERVER:ISC-DUID-BO

Severity

 High

Recommended

 No

Recommended Action

 Drop

Category

 DHCP

Keywords

 ISC DHCP Server DUID Handling Stack Buffer Overflow

Release Date

 2013/01/08

Update Number

 2223

Supported Platforms

 idp-4.0+, isg-3.0+, j-series-9.5+, mx-9.4+, srx-9.2+, srx-branch-9.4+, vsrx-12.1+

DHCP: ISC DHCP Server DUID Handling Stack Buffer Overflow


This signature detects attempts to exploit a known vulnerability in ISC DHCP Server. It is due to lack of bounds checking when parsing the client DUID (DHCP unique identifier). Successful exploitation would result in execution of arbitrary code in the context of the affected application. Failed exploitation will cause denial-of-service.

Extended Description

ISC DHCP is prone to multiple denial-of-service vulnerabilities. An attacker can exploit these issues to cause the affected application to crash, resulting in a denial-of-service condition.

Affected Products

  • Debian Linux 6.0 amd64
  • Debian Linux 6.0 arm
  • Debian Linux 6.0 ia-32
  • Debian Linux 6.0 ia-64
  • Debian Linux 6.0 mips
  • Debian Linux 6.0 powerpc
  • Debian Linux 6.0 s/390
  • Debian Linux 6.0 sparc
  • ISC DHCP Server 4.1.2
  • ISC DHCP Server 4.1-ESV-R1
  • ISC DHCP Server 4.1-ESV-R3
  • ISC DHCP Server 4.1-ESV-R4
  • ISC DHCP Server 4.1-ESV-R5
  • ISC DHCP Server 4.2
  • ISC DHCP Server 4.2.0-P1
  • ISC DHCP Server 4.2.2
  • ISC DHCP Server 4.2.3
  • ISC DHCP Server 4.2.4
  • Mandriva Enterprise Server 5
  • Mandriva Enterprise Server 5 X86 64
  • Mandriva Linux Mandrake 2011
  • Mandriva Linux Mandrake 2011 x86_64
  • Oracle Enterprise Linux 5
  • Oracle Enterprise Linux 6
  • Oracle Enterprise Linux 6.2
  • Red Hat Enterprise Linux 5 Server
  • Red Hat Enterprise Linux Desktop 5 Client
  • Red Hat Enterprise Linux Desktop 6
  • Red Hat Enterprise Linux Desktop Optional 6
  • Red Hat Enterprise Linux Desktop Workstation 5 Client
  • Red Hat Enterprise Linux HPC Node 6
  • Red Hat Enterprise Linux HPC Node Optional 6
  • Red Hat Enterprise Linux Server 6
  • Red Hat Enterprise Linux Server Optional 6
  • Red Hat Enterprise Linux Workstation 6
  • Red Hat Enterprise Linux Workstation Optional 6
  • Red Hat Fedora 17
  • Ubuntu Ubuntu Linux 11.04 amd64
  • Ubuntu Ubuntu Linux 11.04 ARM
  • Ubuntu Ubuntu Linux 11.04 i386
  • Ubuntu Ubuntu Linux 11.04 powerpc
  • Ubuntu Ubuntu Linux 11.10 amd64
  • Ubuntu Ubuntu Linux 11.10 i386
  • Ubuntu Ubuntu Linux 12.04 LTS amd64
  • Ubuntu Ubuntu Linux 12.04 LTS i386

References

  • BugTraq: 54665
  • CVE: CVE-2012-3570
  • URL: https://kb.isc.org/article/AA-00714

Site Map
RSS Feeds
Careers
Accessibility
Feedback
Privacy Policy
Legal Notices
Copyright © 1999-2010 Juniper Networks, Inc. All rights reserved.
Help
|
My Account
|
Log Out