Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2008-3214

Overview

Vulnerability Score 7.8 7.8
CVE Id CVE-2008-3214
Last Modified 26 Nov 2012 10:48:53
Published 18 Jul 2008 12:41:00
Confidentiality Impact NONE NONE
Integrity Impact NONE NONE
Availability Impact COMPLETE COMPLETE
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2008-3214

Summary

dnsmasq 2.25 allows remote attackers to cause a denial of service (daemon crash) by (1) renewing a nonexistent lease or (2) sending a DHCPREQUEST for an IP address that is not in the same network, related to the DHCP NAK response from the daemon.

Vulnerable Systems

Application

  • Thekelleys Dnsmasq 2.25


References

CONFIRM - https://bugs.launchpad.net/ubuntu/+source/dnsmasq/+bug/47438

CONFIRM - http://www.thekelleys.org.uk/dnsmasq/CHANGELOG

MLIST - [oss-security] 20080712 Re: CVE request for dnsmasq DoS

MLIST - [oss-security] 20080708 Re: CVE request for dnsmasq DoS

MLIST - [oss-security] 20080703 Re: CVE request for dnsmasq DoS

MLIST - [oss-security] 20080702 Re: CVE request for dnsmasq DoS

MLIST - [oss-security] 20080701 Re: CVE request for dnsmasq DoS

MLIST - [oss-security] 20080630 CVE request for dnsmasq DoS

CONFIRM - http://freshmeat.net/projects/dnsmasq/?branch_id=1991&release_id=217681

XF - dnsmasq-multiple-dos(43929)


Last Updated: 27 May 2016 10:58:30