DHCP: ISC DHCP Server DUID Handling Stack Buffer Overflow
This signature detects attempts to exploit a known vulnerability in ISC DHCP Server. It is due to lack of bounds checking when parsing the client DUID (DHCP unique identifier). Successful exploitation would result in execution of arbitrary code in the context of the affected application. Failed exploitation will cause denial-of-service.
Extended Description
ISC DHCP is prone to multiple denial-of-service vulnerabilities. An attacker can exploit these issues to cause the affected application to crash, resulting in a denial-of-service condition.
Affected Products
Isc dhcp_server
Short Name
DHCP:SERVER:ISC-DUID-BO
Severity
Major
Recommended
False
Recommended Action
Drop
Category
DHCP
Keywords
Buffer CVE-2012-3570 DHCP DUID Handling ISC Overflow Server Stack bid:54665
Release Date
01/09/2013
Supported Platforms
srx-branch-12.3
srx-19.3
srx-branch-19.3
vsrx3bsd-19.2
srx-branch-19.4
vsrx-19.4
mx-12.3
mx-19.4
vmx-19.4
mx-19.3
vsrx3bsd-19.4
srx-19.4
vsrx-12.3
vmx-19.3
vsrx-19.2
srx-12.3
Sigpack Version
3336
Port
UDP/547
False Positive
Unknown
Vendors
Red_hat
Oracle
Mandriva
Ubuntu
Isc
Debian
CVSS Score
5.7