CVE-2012-3955

dhcp: reduced expiration time of an IPv6 lease may cause dhcpd to crash

Severity Score

7.1

*CVSS v2

Exploit Likelihood

*EPSS

Affected Versions

*CPE

Public Exploits

*Multiple Sources

Exploited in Wild

*KEV

Decision

*SSVC

Descriptions

ISC DHCP 4.1.x before 4.1-ESV-R7 and 4.2.x before 4.2.4-P2 allows remote attackers to cause a denial of service (daemon crash) in opportunistic circumstances by establishing an IPv6 lease in an environment where the lease expiration time is later reduced.

ISC DHCP v4.1-4.1.x antes de v4.1-ESV-R7 y v4.2.x antes de v4.2.4-P2 permite a atacantes remotos provocar una denegación de servicio (caída del demonio) en determinadas circunstancias mediante el establecimiento de un 'lease' IPv6 en un entorno donde la expiración del leasing es posteriormente reducida.

A flaw was found in the way the dhcpd daemon handled the expiration time of IPv6 leases. If dhcpd's configuration was changed to reduce the default IPv6 lease time, lease renewal requests for previously assigned leases could cause dhcpd to crash.

*Credits: N/A

Attack Vector

Network

Attack Complexity

Medium

Authentication

None

Confidentiality

None

Integrity

None

Availability

Complete

Attack Vector

Adjacent

Attack Complexity

Medium

Authentication

None

Confidentiality

None

Integrity

None

Availability

Partial

* Common Vulnerability Scoring System

SSVC

Decision:-

Exploitation

Automatable

Tech. Impact

* Organization's Worst-case Scenario

Timeline

2012-07-11 CVE Reserved
2012-09-14 CVE Published
2024-04-14 EPSS Updated
2024-08-06 CVE Updated
---------- Exploited in Wild
---------- KEV Due Date
---------- First Exploit

CWE

CAPEC

References (18)

URL	Tag	Source
http://secunia.com/advisories/51318	Third Party Advisory
http://www.securityfocus.com/bid/55530	Third Party Advisory
http://www.securitytracker.com/id?1027528	Third Party Advisory
https://blogs.oracle.com/sunsecurity/entry/cve_2012_3955_denial_of	Third Party Advisory

URL	Date	SRC

URL	Date	SRC

URL	Date	SRC
http://lists.fedoraproject.org/pipermail/package-announce/2012-October/088882.html	2020-01-08
http://lists.fedoraproject.org/pipermail/package-announce/2012-September/086992.html	2020-01-08
http://lists.fedoraproject.org/pipermail/package-announce/2012-September/088220.html	2020-01-08
http://lists.opensuse.org/opensuse-updates/2012-09/msg00088.html	2020-01-08
http://lists.opensuse.org/opensuse-updates/2012-09/msg00103.html	2020-01-08
http://lists.opensuse.org/opensuse-updates/2012-09/msg00105.html	2020-01-08
http://rhn.redhat.com/errata/RHSA-2013-0504.html	2020-01-08
http://security.gentoo.org/glsa/glsa-201301-06.xml	2020-01-08
http://www.debian.org/security/2012/dsa-2551	2020-01-08
http://www.mandriva.com/security/advisories?name=MDVSA-2012:153	2020-01-08
http://www.ubuntu.com/usn/USN-1571-1	2020-01-08
https://kb.isc.org/article/AA-00779	2020-01-08
https://access.redhat.com/security/cve/CVE-2012-3955	2013-02-20
https://bugzilla.redhat.com/show_bug.cgi?id=856766	2013-02-20

Affected Vendors, Products, and Versions

Vendor		Product				Version		Other		Status
Vendor	Product	Version	Other	Status	<-- -->	Vendor	Product	Version	Other	Status
Isc Search vendor "Isc"		Dhcp Search vendor "Isc" for product "Dhcp"				4.1-esv Search vendor "Isc" for product "Dhcp" and version "4.1-esv"		-		Affected
Isc Search vendor "Isc"		Dhcp Search vendor "Isc" for product "Dhcp"				4.1-esv Search vendor "Isc" for product "Dhcp" and version "4.1-esv"		r1		Affected
Isc Search vendor "Isc"		Dhcp Search vendor "Isc" for product "Dhcp"				4.1-esv Search vendor "Isc" for product "Dhcp" and version "4.1-esv"		r2		Affected
Isc Search vendor "Isc"		Dhcp Search vendor "Isc" for product "Dhcp"				4.1-esv Search vendor "Isc" for product "Dhcp" and version "4.1-esv"		r3		Affected
Isc Search vendor "Isc"		Dhcp Search vendor "Isc" for product "Dhcp"				4.1-esv Search vendor "Isc" for product "Dhcp" and version "4.1-esv"		r3_b1		Affected
Isc Search vendor "Isc"		Dhcp Search vendor "Isc" for product "Dhcp"				4.1-esv Search vendor "Isc" for product "Dhcp" and version "4.1-esv"		r4		Affected
Isc Search vendor "Isc"		Dhcp Search vendor "Isc" for product "Dhcp"				4.1-esv Search vendor "Isc" for product "Dhcp" and version "4.1-esv"		r5		Affected
Isc Search vendor "Isc"		Dhcp Search vendor "Isc" for product "Dhcp"				4.1-esv Search vendor "Isc" for product "Dhcp" and version "4.1-esv"		r5_b1		Affected
Isc Search vendor "Isc"		Dhcp Search vendor "Isc" for product "Dhcp"				4.1-esv Search vendor "Isc" for product "Dhcp" and version "4.1-esv"		r5_rc1		Affected
Isc Search vendor "Isc"		Dhcp Search vendor "Isc" for product "Dhcp"				4.1-esv Search vendor "Isc" for product "Dhcp" and version "4.1-esv"		r5_rc2		Affected
Isc Search vendor "Isc"		Dhcp Search vendor "Isc" for product "Dhcp"				4.1-esv Search vendor "Isc" for product "Dhcp" and version "4.1-esv"		r6		Affected
Isc Search vendor "Isc"		Dhcp Search vendor "Isc" for product "Dhcp"				4.1-esv Search vendor "Isc" for product "Dhcp" and version "4.1-esv"		rc1		Affected
Isc Search vendor "Isc"		Dhcp Search vendor "Isc" for product "Dhcp"				4.1.0 Search vendor "Isc" for product "Dhcp" and version "4.1.0"		-		Affected
Isc Search vendor "Isc"		Dhcp Search vendor "Isc" for product "Dhcp"				4.1.0 Search vendor "Isc" for product "Dhcp" and version "4.1.0"		a1		Affected
Isc Search vendor "Isc"		Dhcp Search vendor "Isc" for product "Dhcp"				4.1.0 Search vendor "Isc" for product "Dhcp" and version "4.1.0"		a2		Affected
Isc Search vendor "Isc"		Dhcp Search vendor "Isc" for product "Dhcp"				4.1.0 Search vendor "Isc" for product "Dhcp" and version "4.1.0"		b1		Affected
Isc Search vendor "Isc"		Dhcp Search vendor "Isc" for product "Dhcp"				4.1.1 Search vendor "Isc" for product "Dhcp" and version "4.1.1"		-		Affected
Isc Search vendor "Isc"		Dhcp Search vendor "Isc" for product "Dhcp"				4.1.1 Search vendor "Isc" for product "Dhcp" and version "4.1.1"		b1		Affected
Isc Search vendor "Isc"		Dhcp Search vendor "Isc" for product "Dhcp"				4.1.1 Search vendor "Isc" for product "Dhcp" and version "4.1.1"		b2		Affected
Isc Search vendor "Isc"		Dhcp Search vendor "Isc" for product "Dhcp"				4.1.1 Search vendor "Isc" for product "Dhcp" and version "4.1.1"		b3		Affected
Isc Search vendor "Isc"		Dhcp Search vendor "Isc" for product "Dhcp"				4.1.1 Search vendor "Isc" for product "Dhcp" and version "4.1.1"		rc1		Affected
Isc Search vendor "Isc"		Dhcp Search vendor "Isc" for product "Dhcp"				4.1.2 Search vendor "Isc" for product "Dhcp" and version "4.1.2"		-		Affected
Isc Search vendor "Isc"		Dhcp Search vendor "Isc" for product "Dhcp"				4.1.2 Search vendor "Isc" for product "Dhcp" and version "4.1.2"		b1		Affected
Isc Search vendor "Isc"		Dhcp Search vendor "Isc" for product "Dhcp"				4.1.2 Search vendor "Isc" for product "Dhcp" and version "4.1.2"		p1		Affected
Isc Search vendor "Isc"		Dhcp Search vendor "Isc" for product "Dhcp"				4.1.2 Search vendor "Isc" for product "Dhcp" and version "4.1.2"		rc1		Affected
Debian Search vendor "Debian"		Debian Linux Search vendor "Debian" for product "Debian Linux"				6.0 Search vendor "Debian" for product "Debian Linux" and version "6.0"		-		Affected
Debian Search vendor "Debian"		Debian Linux Search vendor "Debian" for product "Debian Linux"				7.0 Search vendor "Debian" for product "Debian Linux" and version "7.0"		-		Affected
Canonical Search vendor "Canonical"		Ubuntu Linux Search vendor "Canonical" for product "Ubuntu Linux"				10.04 Search vendor "Canonical" for product "Ubuntu Linux" and version "10.04"		lts		Affected
Canonical Search vendor "Canonical"		Ubuntu Linux Search vendor "Canonical" for product "Ubuntu Linux"				11.04 Search vendor "Canonical" for product "Ubuntu Linux" and version "11.04"		-		Affected
Canonical Search vendor "Canonical"		Ubuntu Linux Search vendor "Canonical" for product "Ubuntu Linux"				11.10 Search vendor "Canonical" for product "Ubuntu Linux" and version "11.10"		-		Affected
Canonical Search vendor "Canonical"		Ubuntu Linux Search vendor "Canonical" for product "Ubuntu Linux"				12.04 Search vendor "Canonical" for product "Ubuntu Linux" and version "12.04"		lts		Affected