7.8
CVE-2011-2749
- EPSS 38.78%
- Veröffentlicht 15.08.2011 21:55:02
- Zuletzt bearbeitet 16.06.2026 23:31:55
- Quelle cve@mitre.org
- CVE-Watchlists
- Unerledigt
The server in ISC DHCP 3.x and 4.x before 4.2.2, 3.1-ESV before 3.1-ESV-R3, and 4.1-ESV before 4.1-ESV-R3 allows remote attackers to cause a denial of service (daemon exit) via a crafted BOOTP packet.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
Debian ≫ Debian Linux Version5.0
Debian ≫ Debian Linux Version6.0
Debian ≫ Debian Linux Version7.0
Canonical ≫ Ubuntu Linux Version8.04 SwEditionlts
Canonical ≫ Ubuntu Linux Version10.04 SwEditionlts
Canonical ≫ Ubuntu Linux Version10.10
Canonical ≫ Ubuntu Linux Version11.04
| Typ | Quelle | Score | Percentile |
|---|---|---|---|
| EPSS | FIRST.org | 38.78% | 0.984 |
| Quelle | Base Score | Exploit Score | Impact Score | Vector String |
|---|---|---|---|---|
| nvd@nist.gov | 7.8 | 10 | 6.9 |
AV:N/AC:L/Au:N/C:N/I:N/A:C
|
CWE-20 Improper Input Validation
The product receives input or data, but it does not validate or incorrectly validates that the input has the properties that are required to process the data safely and correctly.
http://kb.juniper.net/InfoCenter/index?page=content&id=JSA10761
http://security.gentoo.org/glsa/glsa-201301-06.xml
http://lists.fedoraproject.org/pipermail/package-announce/2011-September/065176.html
http://lists.opensuse.org/opensuse-updates/2011-09/msg00014.html
http://secunia.com/advisories/45582
http://secunia.com/advisories/45595
http://secunia.com/advisories/45629
http://secunia.com/advisories/45639
http://secunia.com/advisories/45817
http://secunia.com/advisories/45918
http://secunia.com/advisories/46780
http://securitytracker.com/id?1025918
http://www.debian.org/security/2011/dsa-2292
http://www.isc.org/files/release-notes/DHCP%203.1-ESV-R3_0.html
http://www.isc.org/files/release-notes/DHCP%204.1-ESV-R3.html
http://www.isc.org/files/release-notes/DHCP%204.2.2_0.html
http://www.isc.org/software/dhcp/advisories/cve-2011-2748
http://www.mandriva.com/security/advisories?name=MDVSA-2011:128
http://www.redhat.com/support/errata/RHSA-2011-1160.html
http://www.securityfocus.com/bid/49120
http://www.ubuntu.com/usn/USN-1190-1
https://bugzilla.redhat.com/attachment.cgi?id=517665&action=diff
https://bugzilla.redhat.com/show_bug.cgi?id=729382
https://hermes.opensuse.org/messages/11695711