CVE-2011-0413

The DHCPv6 server in ISC DHCP 4.0.x and 4.1.x before 4.1.2-P1, 4.0-ESV and 4.1-ESV before 4.1-ESV-R1, and 4.2.x before 4.2.1b1 allows remote attackers to cause a denial of service (assertion failure and daemon crash) by sending a message over IPv6 for a declined and abandoned address.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTNIST
7.8 UNKNOWN
NETWORK
LOW
AV:N/AC:L/Au:N/C:N/I:N/A:C
certccCNA
---
---
CVEADP
---
---
Base Score
CVSS 3.x
EPSS Score
Percentile: 93%
VendorProductVersion
iscdhcp
4.0
iscdhcp
4.0.0
iscdhcp
4.0.1
iscdhcp
4.0.1:b1
iscdhcp
4.0.1:rc1
iscdhcp
4.0.2
iscdhcp
4.0.2:b1
iscdhcp
4.0.2:b2
iscdhcp
4.0.2:b3
iscdhcp
4.0.2:rc1
iscdhcp
4.0.3
iscdhcp
4.0.3:b1
iscdhcp
4.0.3:rc1
iscdhcp
4.1.0
iscdhcp
4.1.1
iscdhcp
4.1.1:b1
iscdhcp
4.1.1:b2
iscdhcp
4.1.1:b3
iscdhcp
4.1.1:rc1
iscdhcp
4.1.2
iscdhcp
4.0-esv
iscdhcp
4.1-esv
iscdhcp
4.2.0
iscdhcp
4.2.0:a1
iscdhcp
4.2.0:a2
iscdhcp
4.2.0:b1
iscdhcp
4.2.0:b2
iscdhcp
4.2.0:p1
iscdhcp
4.2.0:rc1
𝑥
= Vulnerable software versions
Debian logo
Debian Releases
Debian Product
Codename
isc-dhcp
bullseye
4.4.1-2.3+deb11u2
fixed
bullseye (security)
4.4.1-2.3+deb11u1
fixed
bookworm
4.4.3-P1-2
fixed
sid
4.4.3-P1-5
fixed
trixie
4.4.3-P1-5
fixed
Ubuntu logo
Ubuntu Releases
Ubuntu Product
Codename
dhcp
maverick
dne
lucid
dne
karmic
dne
hardy
dne
dapper
ignored
dhcp3
maverick
not-affected
lucid
not-affected
karmic
not-affected
hardy
not-affected
dapper
not-affected
isc-dhcp
maverick
dne
lucid
dne
karmic
dne
hardy
dne
dapper
dne
References