[Forgot Password]
Login  Register Subscribe

30479

 
 

423868

 
 

248038

 
 

909

 
 

194772

 
 

282

 
Paid content will be excluded from the download.


Download | Alert*
CVE
view JSON

CVE-2010-3616Date: (C)2010-12-17   (M)2023-12-22


ISC DHCP server 4.2 before 4.2.0-P2, when configured to use failover partnerships, allows remote attackers to cause a denial of service (communications-interrupted state and DHCP client service loss) by connecting to a port that is only intended for a failover peer, as demonstrated by a Nagios check_tcp process check to TCP port 520.

CVSS Score and Metrics +CVSS Score and Metrics -

CVSS V2 Severity:
CVSS Score : 5.0
Exploit Score: 10.0
Impact Score: 2.9
 
CVSS V2 Metrics:
Access Vector: NETWORK
Access Complexity: LOW
Authentication: NONE
Confidentiality: NONE
Integrity: NONE
Availability: PARTIAL
  
Reference:
SECTRACK-1024862
SECUNIA-42618
SECUNIA-42682
BID-45360
ADV-2010-3208
ADV-2011-0052
FEDORA-2010-18856
MDVSA-2011:001
VU#159528
https://lists.isc.org/pipermail/dhcp-users/2010-December/012368.html
https://www.isc.org/software/dhcp/advisories/cve-2010-3616

CPE    2
cpe:/a:isc:dhcp:4.2.0:p1
cpe:/a:isc:dhcp:4.2.0
CWE    1
CWE-20
OVAL    5
oval:org.secpod.oval:def:100977
oval:org.secpod.oval:def:300397
oval:org.secpod.oval:def:101228
oval:org.secpod.oval:def:102962
...

© SecPod Technologies