Improper input validation in Isc Dhcp
CVE-2010-3616
ISC DHCP server 4.2 before 4.2.0-P2, when configured to use failover partnerships, allows remote attackers to cause a denial of service (communications-interrupted state and DHCP client service loss) by connecting to a port that is only in…
Vulnerability class: Drupalgeddon 2 (CVE-2018-7600)
EPSS: 0.061 (90.9th percentile) — read the EPSS interpretation.
Affected products
- Isc Dhcp — versions 4.2.0
- N/a — versions n/a
Weakness classification (CWE)
References
- FEDORA-2010-18856 (x_refsource_FEDORA, vendor-advisory)
- 42618 (x_refsource_SECUNIA, third-party-advisory, Vendor Advisory)
- ADV-2010-3208 (vdb-entry, x_refsource_VUPEN, Vendor Advisory)
- ADV-2011-0052 (vdb-entry, x_refsource_VUPEN)
- [dhcp-users] 20101207 nagios check_tcp kills failover, then dhcp failure. (mailing-list, x_refsource_MLIST)
- cret@cert.org (x_refsource_CONFIRM, Vendor Advisory)
- VU#159528 (x_refsource_CERT-VN, US Government Resource, third-party-advisory)
- 1024862 (vdb-entry, x_refsource_SECTRACK)
- MDVSA-2011:001 (vendor-advisory, x_refsource_MANDRIVA)
- 45360 (vdb-entry, x_refsource_BID)