CVE-2012-3571
ISC DHCP 4.x - Multiple Denial of Service Vulnerabilities
Severity Score
7.5
*CVSS v3
Exploit Likelihood
*EPSS
Affected Versions
*CPE
Public Exploits
2
*Multiple Sources
Exploited in Wild
-
*KEV
Decision
-
*SSVC
Descriptions
ISC DHCP 4.1.2 through 4.2.4 and 4.1-ESV before 4.1-ESV-R6 allows remote attackers to cause a denial of service (infinite loop and CPU consumption) via a malformed client identifier.
ISC DHCP v4.1.2 a v4.2.4 y v4.1-ESV antes de v4.1-ESV-R6 permite a atacantes remotos causar una denegación de servicio (bucle infinito y excesivo consumo de CPU) a través de un identificador de cliente con formato incorrecto.
An unexpected client identifier parameter can cause the ISC DHCP daemon to segmentation fault when running in DHCPv6 mode, resulting in a denial of service to further client requests. In order to exploit this condition, an attacker must be able to send requests to the DHCP server. An error in the handling of malformed client identifiers can cause a DHCP server running affected versions to enter a state where further client requests are not processed and the server process loops endlessly, consuming all available CPU cycles. Under normal circumstances this condition should not be triggered, but a non-conforming or malicious client could deliberately trigger it in a vulnerable server. In order to exploit this condition an attacker must be able to send requests to the DHCP server. Two memory leaks have been found and fixed in ISC DHCP. The updated packages have been upgraded to the latest version which is not affected by these issues.
*Credits:
N/A
CVSS Scores
Attack Vector
Attack Complexity
Privileges Required
User Interaction
Scope
Confidentiality
Integrity
Availability
Attack Vector
Attack Complexity
Authentication
Confidentiality
Integrity
Availability
Attack Vector
Attack Complexity
Authentication
Confidentiality
Integrity
Availability
* Common Vulnerability Scoring System
SSVC
- Decision:-
Exploitation
Automatable
Tech. Impact
* Organization's Worst-case Scenario
Timeline
- 2012-06-14 CVE Reserved
- 2012-07-25 CVE Published
- 2012-07-29 First Exploit
- 2024-08-06 CVE Updated
- 2025-04-30 EPSS Updated
- ---------- Exploited in Wild
- ---------- KEV Due Date
CWE
- CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer
CAPEC
References (17)
| URL | Tag | Source |
|---|---|---|
| http://kb.juniper.net/InfoCenter/index?page=content&id=JSA10761 | Third Party Advisory | |
| http://www.oracle.com/technetwork/topics/security/ovmbulletinjul2016-3090546.html | Third Party Advisory |
|
| http://www.securityfocus.com/bid/54665 | Third Party Advisory |
| URL | Date | SRC |
|---|---|---|
| https://packetstorm.news/files/id/115094 | 2012-07-29 | |
| https://www.exploit-db.com/exploits/37538 | 2015-07-09 |
| URL | Date | SRC |
|---|
| URL | Date | SRC |
|---|---|---|
| http://lists.opensuse.org/opensuse-updates/2012-08/msg00030.html | 2020-04-01 | |
| http://rhn.redhat.com/errata/RHSA-2012-1140.html | 2020-04-01 | |
| http://rhn.redhat.com/errata/RHSA-2012-1141.html | 2020-04-01 | |
| http://security.gentoo.org/glsa/glsa-201301-06.xml | 2020-04-01 | |
| http://www.debian.org/security/2012/dsa-2516 | 2020-04-01 | |
| http://www.debian.org/security/2012/dsa-2519 | 2020-04-01 | |
| http://www.mandriva.com/security/advisories?name=MDVSA-2012:115 | 2020-04-01 | |
| http://www.mandriva.com/security/advisories?name=MDVSA-2012:116 | 2020-04-01 | |
| http://www.ubuntu.com/usn/USN-1519-1 | 2020-04-01 | |
| https://kb.isc.org/article/AA-00712 | 2020-04-01 | |
| https://access.redhat.com/security/cve/CVE-2012-3571 | 2012-08-03 | |
| https://bugzilla.redhat.com/show_bug.cgi?id=842420 | 2012-08-03 |
Affected Vendors, Products, and Versions
| Vendor | Product | Version | Other | Status | ||||||
|---|---|---|---|---|---|---|---|---|---|---|
| Vendor | Product | Version | Other | Status | <-- --> | Vendor | Product | Version | Other | Status |
| Isc Search vendor "Isc" | Dhcp Search vendor "Isc" for product "Dhcp" | 4.1.2 Search vendor "Isc" for product "Dhcp" and version "4.1.2" | - |
Affected
| ||||||
| Isc Search vendor "Isc" | Dhcp Search vendor "Isc" for product "Dhcp" | 4.2.0 Search vendor "Isc" for product "Dhcp" and version "4.2.0" | - |
Affected
| ||||||
| Isc Search vendor "Isc" | Dhcp Search vendor "Isc" for product "Dhcp" | 4.2.0 Search vendor "Isc" for product "Dhcp" and version "4.2.0" | a1 |
Affected
| ||||||
| Isc Search vendor "Isc" | Dhcp Search vendor "Isc" for product "Dhcp" | 4.2.0 Search vendor "Isc" for product "Dhcp" and version "4.2.0" | a2 |
Affected
| ||||||
| Isc Search vendor "Isc" | Dhcp Search vendor "Isc" for product "Dhcp" | 4.2.0 Search vendor "Isc" for product "Dhcp" and version "4.2.0" | b1 |
Affected
| ||||||
| Isc Search vendor "Isc" | Dhcp Search vendor "Isc" for product "Dhcp" | 4.2.0 Search vendor "Isc" for product "Dhcp" and version "4.2.0" | b2 |
Affected
| ||||||
| Isc Search vendor "Isc" | Dhcp Search vendor "Isc" for product "Dhcp" | 4.2.0 Search vendor "Isc" for product "Dhcp" and version "4.2.0" | p1 |
Affected
| ||||||
| Isc Search vendor "Isc" | Dhcp Search vendor "Isc" for product "Dhcp" | 4.2.0 Search vendor "Isc" for product "Dhcp" and version "4.2.0" | rc1 |
Affected
| ||||||
| Isc Search vendor "Isc" | Dhcp Search vendor "Isc" for product "Dhcp" | 4.2.1 Search vendor "Isc" for product "Dhcp" and version "4.2.1" | - |
Affected
| ||||||
| Isc Search vendor "Isc" | Dhcp Search vendor "Isc" for product "Dhcp" | 4.2.1 Search vendor "Isc" for product "Dhcp" and version "4.2.1" | b1 |
Affected
| ||||||
| Isc Search vendor "Isc" | Dhcp Search vendor "Isc" for product "Dhcp" | 4.2.1 Search vendor "Isc" for product "Dhcp" and version "4.2.1" | rc1 |
Affected
| ||||||
| Isc Search vendor "Isc" | Dhcp Search vendor "Isc" for product "Dhcp" | 4.2.2 Search vendor "Isc" for product "Dhcp" and version "4.2.2" | - |
Affected
| ||||||
| Isc Search vendor "Isc" | Dhcp Search vendor "Isc" for product "Dhcp" | 4.2.2 Search vendor "Isc" for product "Dhcp" and version "4.2.2" | b1 |
Affected
| ||||||
| Isc Search vendor "Isc" | Dhcp Search vendor "Isc" for product "Dhcp" | 4.2.2 Search vendor "Isc" for product "Dhcp" and version "4.2.2" | rc1 |
Affected
| ||||||
| Isc Search vendor "Isc" | Dhcp Search vendor "Isc" for product "Dhcp" | 4.2.3 Search vendor "Isc" for product "Dhcp" and version "4.2.3" | - |
Affected
| ||||||
| Isc Search vendor "Isc" | Dhcp Search vendor "Isc" for product "Dhcp" | 4.2.3 Search vendor "Isc" for product "Dhcp" and version "4.2.3" | p1 |
Affected
| ||||||
| Isc Search vendor "Isc" | Dhcp Search vendor "Isc" for product "Dhcp" | 4.2.3 Search vendor "Isc" for product "Dhcp" and version "4.2.3" | p2 |
Affected
| ||||||
| Isc Search vendor "Isc" | Dhcp Search vendor "Isc" for product "Dhcp" | 4.2.4 Search vendor "Isc" for product "Dhcp" and version "4.2.4" | - |
Affected
| ||||||
| Isc Search vendor "Isc" | Dhcp Search vendor "Isc" for product "Dhcp" | 4.1-esv Search vendor "Isc" for product "Dhcp" and version "4.1-esv" | - |
Affected
| ||||||
| Isc Search vendor "Isc" | Dhcp Search vendor "Isc" for product "Dhcp" | 4.1-esv Search vendor "Isc" for product "Dhcp" and version "4.1-esv" | r1 |
Affected
| ||||||
| Isc Search vendor "Isc" | Dhcp Search vendor "Isc" for product "Dhcp" | 4.1-esv Search vendor "Isc" for product "Dhcp" and version "4.1-esv" | r2 |
Affected
| ||||||
| Isc Search vendor "Isc" | Dhcp Search vendor "Isc" for product "Dhcp" | 4.1-esv Search vendor "Isc" for product "Dhcp" and version "4.1-esv" | r3 |
Affected
| ||||||
| Isc Search vendor "Isc" | Dhcp Search vendor "Isc" for product "Dhcp" | 4.1-esv Search vendor "Isc" for product "Dhcp" and version "4.1-esv" | r3_b1 |
Affected
| ||||||
| Isc Search vendor "Isc" | Dhcp Search vendor "Isc" for product "Dhcp" | 4.1-esv Search vendor "Isc" for product "Dhcp" and version "4.1-esv" | r4 |
Affected
| ||||||
| Isc Search vendor "Isc" | Dhcp Search vendor "Isc" for product "Dhcp" | 4.1-esv Search vendor "Isc" for product "Dhcp" and version "4.1-esv" | r5 |
Affected
| ||||||
| Isc Search vendor "Isc" | Dhcp Search vendor "Isc" for product "Dhcp" | 4.1-esv Search vendor "Isc" for product "Dhcp" and version "4.1-esv" | r5_b1 |
Affected
| ||||||
| Isc Search vendor "Isc" | Dhcp Search vendor "Isc" for product "Dhcp" | 4.1-esv Search vendor "Isc" for product "Dhcp" and version "4.1-esv" | r5_rc1 |
Affected
| ||||||
| Isc Search vendor "Isc" | Dhcp Search vendor "Isc" for product "Dhcp" | 4.1-esv Search vendor "Isc" for product "Dhcp" and version "4.1-esv" | r5_rc2 |
Affected
| ||||||
| Canonical Search vendor "Canonical" | Ubuntu Linux Search vendor "Canonical" for product "Ubuntu Linux" | 11.04 Search vendor "Canonical" for product "Ubuntu Linux" and version "11.04" | - |
Affected
| ||||||
| Canonical Search vendor "Canonical" | Ubuntu Linux Search vendor "Canonical" for product "Ubuntu Linux" | 11.10 Search vendor "Canonical" for product "Ubuntu Linux" and version "11.10" | - |
Affected
| ||||||
| Canonical Search vendor "Canonical" | Ubuntu Linux Search vendor "Canonical" for product "Ubuntu Linux" | 12.04 Search vendor "Canonical" for product "Ubuntu Linux" and version "12.04" | lts |
Affected
| ||||||
| Debian Search vendor "Debian" | Debian Linux Search vendor "Debian" for product "Debian Linux" | 6.0 Search vendor "Debian" for product "Debian Linux" and version "6.0" | - |
Affected
| ||||||
| Debian Search vendor "Debian" | Debian Linux Search vendor "Debian" for product "Debian Linux" | 7.0 Search vendor "Debian" for product "Debian Linux" and version "7.0" | - |
Affected
| ||||||