Vulnerability in Isc Dhcp
CVE-2010-2156
ISC DHCP 4.1 before 4.1.1-P1 and 4.0 before 4.0.2-P1 allows remote attackers to cause a denial of service (server exit) via a zero-length client ID.
EPSS: 0.868 (99.4th percentile) — read the EPSS interpretation.
Affected products
- Isc Dhcp — versions 4.0.2, 4.0.1, 4.0.0
- N/a — versions n/a
Weakness classification (CWE)
Public proof-of-concept exploits
References
- MDVSA-2010:114 (vendor-advisory, x_refsource_MANDRIVA)
- 40116 (x_refsource_SECUNIA, third-party-advisory)
- cve@mitre.org (x_refsource_CONFIRM)
- FEDORA-2010-9433 (x_refsource_FEDORA, vendor-advisory)
- 40775 (vdb-entry, x_refsource_BID)
- 14185 (exploit, x_refsource_EXPLOIT-DB)
- dhcp-zero-length-dos(59222) (vdb-entry, x_refsource_XF)
- cve@mitre.org (x_refsource_CONFIRM)
- 1024093 (vdb-entry, x_refsource_SECTRACK)
Frequently asked questions
- What is CVE-2010-2156?
- CVE-2010-2156 is a vulnerability in Isc Dhcp, classified under CWE-189. Published 2010-06-07.
- Is CVE-2010-2156 known to be exploited?
- 1 public proof-of-concept repositories are indexed. Not currently listed in the CISA KEV catalog.