Executive Summary
| Summary | |
|---|---|
| Title | New dhcp packages fix denial of service |
| Informations | |||
|---|---|---|---|
| Name | DSA-1143 | First vendor Publication | 2006-08-04 |
| Vendor | Debian | Last vendor Modification | 2006-08-04 |
| Severity (Vendor) | N/A | Revision | 1 |
Security-Database Scoring CVSS v3
| Cvss vector : N/A | |||
|---|---|---|---|
| Overall CVSS Score | NA | ||
| Base Score | NA | Environmental Score | NA |
| impact SubScore | NA | Temporal Score | NA |
| Exploitabality Sub Score | NA | ||
| Calculate full CVSS 3.0 Vectors scores | |||
Security-Database Scoring CVSS v2
| Cvss vector : (AV:N/AC:L/Au:N/C:N/I:N/A:P) | |||
|---|---|---|---|
| Cvss Base Score | 5 | Attack Range | Network |
| Cvss Impact Score | 2.9 | Attack Complexity | Low |
| Cvss Expoit Score | 10 | Authentication | None Required |
| Calculate full CVSS 2.0 Vectors scores | |||
Detail
| Justin Winschief and Andrew Steets discovered a bug in dhcp, the DHCP server for automatic IP address assignment, which causes the server to unexpectedly exit. For the stable distribution (sarge) this problem has been fixed in version 2.0pl5-19.1sarge2. For the unstable distribution (sid) this problem will be fixed soon. We recommend that you upgrade your dhcp package. |
Original Source
| Url : http://www.debian.org/security/2006/dsa-1143 |
CWE : Common Weakness Enumeration
| % | Id | Name |
|---|---|---|
| 100 % | CWE-399 | Resource Management Errors |
CPE : Common Platform Enumeration
| Type | Description | Count |
|---|---|---|
| Application | 2 |
OpenVAS Exploits
| Date | Description |
|---|---|
| 2008-01-17 | Name : Debian Security Advisory DSA 1143-1 (dhcp) File : nvt/deb_1143_1.nasl |
Open Source Vulnerability Database (OSVDB)
| Id | Description |
|---|---|
| 27774 | ISC DHCP Server supersede_lease() Function DHCPDISCOVER Packet Remote DoS |
Snort® IPS/IDS
| Date | Description |
|---|---|
| 2014-01-10 | ISC DHCP server 2 client_id length denial of service attempt RuleID : 8056 - Revision : 9 - Type : SERVER-OTHER |
Nessus® Vulnerability Scanner
| Date | Description |
|---|---|
| 2006-10-14 | Name : The remote Debian host is missing a security-related update. File : debian_DSA-1143.nasl - Type : ACT_GATHER_INFO |
| 2006-08-04 | Name : The remote DHCP server is affected by a denial of service vulnerability. File : dhcp_supersede_lease_dos.nasl - Type : ACT_DENIAL |
Alert History
| Date | Informations |
|---|---|
| 2016-07-07 13:27:15 |
|
| 2014-02-17 11:26:05 |
|
| 2014-01-19 21:29:39 |
|
