Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2013-2494

Overview

Vulnerability Score 4.9 4.9
CVE Id CVE-2013-2494
Last Modified 29 Mar 2013 12:00:00
Published 28 Mar 2013 12:55:01
Confidentiality Impact NONE NONE
Integrity Impact NONE NONE
Availability Impact COMPLETE COMPLETE
Access Vector NETWORK
Access Complexity HIGH
Authentication SINGLE_INSTANCE

CVE-2013-2494

Summary

libdns in ISC DHCP 4.2.x before 4.2.5-P1 allows remote name servers to cause a denial of service (memory consumption) via vectors involving a regular expression, as demonstrated by a memory-exhaustion attack against a machine running a dhcpd process, a related issue to CVE-2013-2266.

Vulnerable Systems

Application

  • Isc Dhcp 4.2.0

  • Isc Dhcp 4.2.1

  • Isc Dhcp 4.2.2

  • Isc Dhcp 4.2.3

  • Isc Dhcp 4.2.4

  • Isc Dhcp 4.2.5


References

CONFIRM - https://kb.isc.org/article/AA-00880/


Last Updated: 27 May 2016 11:02:10