ISC DHCP 4.1-ESV Release 8 Beta 1

CPE Details

ISC DHCP 4.1-ESV Release 8 Beta 1
isc
dhcp
4.1-esv
2016-01-19
16h23 +00:00
2016-01-19
16h23 +00:00
CPE NVD
Alerte pour un CPE
Stay informed of any changes for a specific CPE.
Notifications manage

CPE Name: cpe:2.3:a:isc:dhcp:4.1-esv:r8_b1:*:*:*:*:*:*

Informations

Vendor

isc

Product

dhcp

Version

4.1-esv

Update

r8_b1

Related CVE

Open and find in CVE List

CVE ID Published Description Score Severity
CVE-2017-3144 2019-01-16
20h00 +00:00		 A vulnerability stemming from failure to properly clean up closed OMAPI connections can lead to exhaustion of the pool of socket descriptors available to the DHCP server. Affects ISC DHCP 4.1.0 to 4.1-ESV-R15, 4.2.0 to 4.2.8, 4.3.0 to 4.3.6. Older versions may also be affected but are well beyond their end-of-life (EOL). Releases prior to 4.1.0 have not been tested.
7.5
High
CVE-2018-5733 2019-01-16
20h00 +00:00		 A malicious client which is allowed to send very large amounts of traffic (billions of packets) to a DHCP server can eventually overflow a 32-bit reference counter, potentially causing dhcpd to crash. Affects ISC DHCP 4.1.0 -> 4.1-ESV-R15, 4.2.0 -> 4.2.8, 4.3.0 -> 4.3.6, 4.4.0.
7.5
High
CVE-2016-2774 2016-03-09
14h26 +00:00		 ISC DHCP 4.1.x before 4.1-ESV-R13 and 4.2.x and 4.3.x before 4.3.4 does not restrict the number of concurrent TCP sessions, which allows remote attackers to cause a denial of service (INSIST assertion failure or request-processing outage) by establishing many sessions.
5.9
Medium
CVE-2015-8605 2016-01-14
21h00 +00:00		 ISC DHCP 4.x before 4.1-ESV-R12-P1, 4.2.x, and 4.3.x before 4.3.3-P1 allows remote attackers to cause a denial of service (application crash) via an invalid length field in a UDP IPv4 packet.
6.5
Medium