Russian Vulnerability Scanner Database

Back to List

BDU:2018-00784

Scores

EPSS

0.000none0.0%
0%20%40%60%80%100%

Percentile: 0.0%

CVSS

5.0medium2.0
0246810

CVSS Score: 5.0/10

All CVSS Scores

CVSS 2.0
5.0

Vector: AV:N/AC:L/Au:N/C:N/I:N/A:P

Description

Уязвимость сервера ISC DHCP связана с недостаточной проверкой входных данных. Эксплуатация уязвимости может позволить нарушителю, действующему удаленно, вызвать отказ в обслуживании с помощью специально сформированного запроса, включающего идентификатор клиента нулевой длины

Scaner-VS 7 — a modern vulnerability management solution

Uses this database for vulnerability detection. High-speed search, cross-platform, advanced configuration audit, and flexible filtering. Suitable for organizations of any size.
Learn more about Scaner-VS 7

Sources

bdu

Related Vulnerabilities

CVE-2010-2156

Exploits

Exploit ID: 14185

Source: exploitdb

URL: https://www.exploit-db.com/exploits/14185

Reference Links

https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2010-2156
http://ftp.isc.org/isc/dhcp/dhcp-4.0.2-P1-RELNOTES
http://ftp.isc.org/isc/dhcp/dhcp-4.1.1-P1-RELNOTES
http://lists.fedoraproject.org/pipermail/package-announce/2010-June/042843.html
http://www.exploit-db.com/exploits/14185
http://www.mandriva.com/security/advisories?name=MDVSA-2010:114
http://www.securityfocus.com/bid/40775
http://www.securitytracker.com/id?1024093
https://exchange.xforce.ibmcloud.com/vulnerabilities/59222
https://www.moxa.com/en/support/product-support/security-advisory/edr-810-series-security-router-vulnerabilities-(1)

Recommendations

Source: bdu

Использование рекомендаций:

Для MOXA:
https://www.moxa.com/en/support/product-support/security-advisory/edr-810-series-security-router-vulnerabilities-(1)

Для Internet Systems Consortium:
http://ftp.isc.org/isc/dhcp/dhcp-4.0.2-P1-RELNOTES

URL: https://bdu.fstec.ru/vul/2018-00784

Vulnerable Software (3)

Type: Configuration

Vendor: internet systems consortium

Product: isc dhcp

Operating System: * *

Trait: 
{  "version_end_excluding": "4.0.2-P1",  "version_start_including": "4.0"}

Source: bdu

Type: Configuration

Vendor: internet systems consortium

Product: isc dhcp

Operating System: * *

Trait: 
{  "version_end_excluding": "4.1.1-P1",  "version_start_including": "4.1"}

Source: bdu

Type: Configuration

Vendor: moxa inc.

Product: moxa edr-810

Operating System: * *

Trait: 
{  "version_exact": "4.1"}

Source: bdu

End of list