Click HERE to learn more about classes Guy is teaching for SANS

ISC DHCP DHCPv6 Vulnerability

Published: 2011-01-27. Last Updated: 2011-01-27 23:43:43 UTC
by Guy Bruneau (Version: 1)
2 comment(s)

The Internet Systems Consortium, the makers of the open source DHCP server, indicated the DHCPv6 service may crash after processing a DHCPv6 decline message. This vulnerability has been assigned CVE 2011-0413 and affect version 4.0.x-4.2.x and maybe remotely exploitable.

Note: This DoS only affects DHCPv6 servers and there is currently no workaround.
 

[1] https://lists.isc.org/pipermail/isc-os-security/2011-January/000000.html

[2] http://www.kb.cert.org/vuls/id/686084

-----------

Guy Bruneau IPSS Inc. gbruneau at isc dot sans dot org

Keywords: DHCPv6 DoS
2 comment(s)
Click HERE to learn more about classes Guy is teaching for SANS

Comments

Another reason to get DNS server information added to IPv6 router advertisements, and make DHCP obsolete in IPv6.

Oleksiy

Jan 28th 2011
1 decade ago

- http://www.securitytracker.com/id/1024999
Jan 28 2011 - "... Solution: The vendor has issued a fix (4.1.2-P1, 4.1-ESV-R1, or 4.2.1b1).
The vendor's advisory is available at:
Vendor URL: www.isc.org/software/dhcp/advisories/cve-2011-0413
"... Solution: Upgrade to 4.1.2-P1, 4.1-ESV-R1, or 4.2.1b1..."
.

PC.Tech

Jan 28th 2011
1 decade ago

Login here to join the discussion.


Top of page
Diary Archives