CVE-2011-0413

dhcp: unexpected abort caused by a DHCPv6 decline message

Severity Score

7.8

*CVSS v2

Exploit Likelihood

*EPSS

Affected Versions

*CPE

Public Exploits

*Multiple Sources

Exploited in Wild

*KEV

Decision

*SSVC

Descriptions

The DHCPv6 server in ISC DHCP 4.0.x and 4.1.x before 4.1.2-P1, 4.0-ESV and 4.1-ESV before 4.1-ESV-R1, and 4.2.x before 4.2.1b1 allows remote attackers to cause a denial of service (assertion failure and daemon crash) by sending a message over IPv6 for a declined and abandoned address.

El servidor DHCPv6 en ISC DHCP v4.0.x y v4.1.x anterior a v.4.1.2-P1, v.4.0-ESV y v.4.1-ESV anterior a v.4.1-ESV-R1, y v.4.2.x anterior a v.4.2.1b1 permite a atacantes remotos provocar una denegación de servicio enviando mensajes sobre IPv6 para un declinado y abandono de la dirección.

*Credits: N/A

Attack Vector

Network

Attack Complexity

Low

Authentication

None

Confidentiality

None

Integrity

None

Availability

Complete

Attack Vector

Adjacent

Attack Complexity

Low

Authentication

None

Confidentiality

None

Integrity

None

Availability

Partial

* Common Vulnerability Scoring System

SSVC

Decision:-

Exploitation

Automatable

Tech. Impact

* Organization's Worst-case Scenario

Timeline

2011-01-11 CVE Reserved
2011-01-31 CVE Published
2024-04-02 EPSS Updated
2024-08-06 CVE Updated
---------- Exploited in Wild
---------- KEV Due Date
---------- First Exploit

CWE

CWE-20: Improper Input Validation

CAPEC

References (18)

URL	Tag	Source
http://secunia.com/advisories/43006	Third Party Advisory
http://secunia.com/advisories/43104	Third Party Advisory
http://secunia.com/advisories/43167	Third Party Advisory
http://secunia.com/advisories/43354	Third Party Advisory
http://secunia.com/advisories/43613	Third Party Advisory
http://securitytracker.com/id?1024999	Third Party Advisory
http://www.kb.cert.org/vuls/id/686084	Third Party Advisory
http://www.osvdb.org/70680	Broken Link
http://www.securityfocus.com/bid/46035	Third Party Advisory
https://exchange.xforce.ibmcloud.com/vulnerabilities/64959	Third Party Advisory

URL	Date	SRC

URL	Date	SRC

URL	Date	SRC
http://lists.fedoraproject.org/pipermail/package-announce/2011-February/053644.html	2020-04-01
http://www.debian.org/security/2011/dsa-2184	2020-04-01
http://www.isc.org/software/dhcp/advisories/cve-2011-0413	2020-04-01
http://www.mandriva.com/security/advisories?name=MDVSA-2011:022	2020-04-01
http://www.redhat.com/support/errata/RHSA-2011-0256.html	2020-04-01
https://kb.isc.org/article/AA-00456	2020-04-01
https://access.redhat.com/security/cve/CVE-2011-0413	2011-02-15
https://bugzilla.redhat.com/show_bug.cgi?id=672755	2011-02-15

Affected Vendors, Products, and Versions

Vendor		Product				Version		Other		Status
Vendor	Product	Version	Other	Status	<-- -->	Vendor	Product	Version	Other	Status
Isc Search vendor "Isc"		Dhcp Search vendor "Isc" for product "Dhcp"				4.0 Search vendor "Isc" for product "Dhcp" and version "4.0"		-		Affected
Isc Search vendor "Isc"		Dhcp Search vendor "Isc" for product "Dhcp"				4.0.0 Search vendor "Isc" for product "Dhcp" and version "4.0.0"		-		Affected
Isc Search vendor "Isc"		Dhcp Search vendor "Isc" for product "Dhcp"				4.0.1 Search vendor "Isc" for product "Dhcp" and version "4.0.1"		-		Affected
Isc Search vendor "Isc"		Dhcp Search vendor "Isc" for product "Dhcp"				4.0.1 Search vendor "Isc" for product "Dhcp" and version "4.0.1"		b1		Affected
Isc Search vendor "Isc"		Dhcp Search vendor "Isc" for product "Dhcp"				4.0.1 Search vendor "Isc" for product "Dhcp" and version "4.0.1"		rc1		Affected
Isc Search vendor "Isc"		Dhcp Search vendor "Isc" for product "Dhcp"				4.0.2 Search vendor "Isc" for product "Dhcp" and version "4.0.2"		-		Affected
Isc Search vendor "Isc"		Dhcp Search vendor "Isc" for product "Dhcp"				4.0.2 Search vendor "Isc" for product "Dhcp" and version "4.0.2"		b1		Affected
Isc Search vendor "Isc"		Dhcp Search vendor "Isc" for product "Dhcp"				4.0.2 Search vendor "Isc" for product "Dhcp" and version "4.0.2"		b2		Affected
Isc Search vendor "Isc"		Dhcp Search vendor "Isc" for product "Dhcp"				4.0.2 Search vendor "Isc" for product "Dhcp" and version "4.0.2"		b3		Affected
Isc Search vendor "Isc"		Dhcp Search vendor "Isc" for product "Dhcp"				4.0.2 Search vendor "Isc" for product "Dhcp" and version "4.0.2"		rc1		Affected
Isc Search vendor "Isc"		Dhcp Search vendor "Isc" for product "Dhcp"				4.0.3 Search vendor "Isc" for product "Dhcp" and version "4.0.3"		-		Affected
Isc Search vendor "Isc"		Dhcp Search vendor "Isc" for product "Dhcp"				4.0.3 Search vendor "Isc" for product "Dhcp" and version "4.0.3"		b1		Affected
Isc Search vendor "Isc"		Dhcp Search vendor "Isc" for product "Dhcp"				4.0.3 Search vendor "Isc" for product "Dhcp" and version "4.0.3"		rc1		Affected
Isc Search vendor "Isc"		Dhcp Search vendor "Isc" for product "Dhcp"				4.1.0 Search vendor "Isc" for product "Dhcp" and version "4.1.0"		-		Affected
Isc Search vendor "Isc"		Dhcp Search vendor "Isc" for product "Dhcp"				4.1.1 Search vendor "Isc" for product "Dhcp" and version "4.1.1"		-		Affected
Isc Search vendor "Isc"		Dhcp Search vendor "Isc" for product "Dhcp"				4.1.1 Search vendor "Isc" for product "Dhcp" and version "4.1.1"		b1		Affected
Isc Search vendor "Isc"		Dhcp Search vendor "Isc" for product "Dhcp"				4.1.1 Search vendor "Isc" for product "Dhcp" and version "4.1.1"		b2		Affected
Isc Search vendor "Isc"		Dhcp Search vendor "Isc" for product "Dhcp"				4.1.1 Search vendor "Isc" for product "Dhcp" and version "4.1.1"		b3		Affected
Isc Search vendor "Isc"		Dhcp Search vendor "Isc" for product "Dhcp"				4.1.1 Search vendor "Isc" for product "Dhcp" and version "4.1.1"		rc1		Affected
Isc Search vendor "Isc"		Dhcp Search vendor "Isc" for product "Dhcp"				4.1.2 Search vendor "Isc" for product "Dhcp" and version "4.1.2"		-		Affected
Isc Search vendor "Isc"		Dhcp Search vendor "Isc" for product "Dhcp"				4.0-esv Search vendor "Isc" for product "Dhcp" and version "4.0-esv"		-		Affected
Isc Search vendor "Isc"		Dhcp Search vendor "Isc" for product "Dhcp"				4.1-esv Search vendor "Isc" for product "Dhcp" and version "4.1-esv"		-		Affected
Isc Search vendor "Isc"		Dhcp Search vendor "Isc" for product "Dhcp"				4.2.0 Search vendor "Isc" for product "Dhcp" and version "4.2.0"		-		Affected
Isc Search vendor "Isc"		Dhcp Search vendor "Isc" for product "Dhcp"				4.2.0 Search vendor "Isc" for product "Dhcp" and version "4.2.0"		a1		Affected
Isc Search vendor "Isc"		Dhcp Search vendor "Isc" for product "Dhcp"				4.2.0 Search vendor "Isc" for product "Dhcp" and version "4.2.0"		a2		Affected
Isc Search vendor "Isc"		Dhcp Search vendor "Isc" for product "Dhcp"				4.2.0 Search vendor "Isc" for product "Dhcp" and version "4.2.0"		b1		Affected
Isc Search vendor "Isc"		Dhcp Search vendor "Isc" for product "Dhcp"				4.2.0 Search vendor "Isc" for product "Dhcp" and version "4.2.0"		b2		Affected
Isc Search vendor "Isc"		Dhcp Search vendor "Isc" for product "Dhcp"				4.2.0 Search vendor "Isc" for product "Dhcp" and version "4.2.0"		p1		Affected
Isc Search vendor "Isc"		Dhcp Search vendor "Isc" for product "Dhcp"				4.2.0 Search vendor "Isc" for product "Dhcp" and version "4.2.0"		rc1		Affected