CVE-2012-3570
Severity CVSS v4.0:
Pending analysis
Type:
CWE-119
Buffer Errors
Publication date:
25/07/2012
Last modified:
11/04/2025
Description
Buffer overflow in ISC DHCP 4.2.x before 4.2.4-P1, when DHCPv6 mode is enabled, allows remote attackers to cause a denial of service (segmentation fault and daemon exit) via a crafted client identifier parameter.
Impact
Base Score 2.0
5.70
Severity 2.0
MEDIUM
Vulnerable products and versions
CPE | From | Up to |
---|---|---|
cpe:2.3:a:isc:dhcp:4.2.0:*:*:*:*:*:*:* | ||
cpe:2.3:a:isc:dhcp:4.2.0:a1:*:*:*:*:*:* | ||
cpe:2.3:a:isc:dhcp:4.2.0:a2:*:*:*:*:*:* | ||
cpe:2.3:a:isc:dhcp:4.2.0:b1:*:*:*:*:*:* | ||
cpe:2.3:a:isc:dhcp:4.2.0:b2:*:*:*:*:*:* | ||
cpe:2.3:a:isc:dhcp:4.2.0:p1:*:*:*:*:*:* | ||
cpe:2.3:a:isc:dhcp:4.2.0:rc1:*:*:*:*:*:* | ||
cpe:2.3:a:isc:dhcp:4.2.1:*:*:*:*:*:*:* | ||
cpe:2.3:a:isc:dhcp:4.2.1:b1:*:*:*:*:*:* | ||
cpe:2.3:a:isc:dhcp:4.2.1:rc1:*:*:*:*:*:* | ||
cpe:2.3:a:isc:dhcp:4.2.2:*:*:*:*:*:*:* | ||
cpe:2.3:a:isc:dhcp:4.2.2:b1:*:*:*:*:*:* | ||
cpe:2.3:a:isc:dhcp:4.2.2:rc1:*:*:*:*:*:* | ||
cpe:2.3:a:isc:dhcp:4.2.3:*:*:*:*:*:*:* | ||
cpe:2.3:a:isc:dhcp:4.2.3:p1:*:*:*:*:*:* |
To consult the complete list of CPE names with products and versions, see this page
References to Advisories, Solutions, and Tools
- http://lists.opensuse.org/opensuse-updates/2012-08/msg00030.html
- http://security.gentoo.org/glsa/glsa-201301-06.xml
- http://www.mandriva.com/security/advisories?name=MDVSA-2012%3A115
- http://www.securityfocus.com/bid/54665
- https://kb.isc.org/article/AA-00714
- http://lists.opensuse.org/opensuse-updates/2012-08/msg00030.html
- http://security.gentoo.org/glsa/glsa-201301-06.xml
- http://www.mandriva.com/security/advisories?name=MDVSA-2012%3A115
- http://www.securityfocus.com/bid/54665
- https://kb.isc.org/article/AA-00714